CVE-2026-4833: Orc discount Markdown markdown.c compile recursion

Overview

Severity

Low (CVSS 3.3)

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:X/RC:C

Exploit Status

Not Exploited

Patch Tuesday

2026-Mar

Released

2026-03-29

Last Updated

2026-04-29

EPSS Score

0.02% (percentile: 4.2%)

Affected Products (3)

Open Source Software

• azl3 rubygem-rdiscount 2.2.7.1-1 on Azure Linux 3.0
• cbl2 rubygem-rdiscount 2.2.0.2-3 on CBL Mariner 2.0

Other

• 21257-17084

Revision History

• 2026-03-29: Information published.
• 2026-03-30: Information published.
• 2026-04-29: Information published.