CVE-2025-68142

Name of the Vulnerable Software and Affected Versions PyMdown Extensions versions prior to 10.16.1

Description PyMdown Extensions, a set of extensions for the Python-Markdown project, contains a Regular Expression Denial of Service (ReDoS) issue within the figure caption extension (pymdownx.blocks.caption). Processing unchecked user content with versions prior to 10.16.1 could lead to long hangs if a malicious payload is crafted.

Recommendations Upgrade to version 10.16.1 or later. As a workaround, avoid using the pymdownx.blocks.caption extension until you are able to upgrade.