GCVE-VVD-MAGEIA-2026-90

Advisory Published

Vulnetix · Advisory published April 8, 2026

A security flaw in Pygments function AdlLexer in archetype.py stems from a regular expression having an inefficient, possibly exponential worst-case computational complexity that consumes excessive CPU cycles. (CVE-2026-4539)

Download JSON Open in Console

Affected Products

Vendor	Product	Versions	Platforms
Mageia	python-pygments	0 (affected), 2.15.1-1.1.mga9 (unaffected)	—

Aliases

CVE-2026-4539

Transitive aliases

GHSA-5239-wwwm-4pmq VVD-CISA-2026-4539 VVD-CESS-2026-4539 CGA-7c8g-pvh3-xg3j TNCVE-2026-4539 EUVD-2026-14287

References

Updated python-pygments packages fix security vulnerability

advisory

Updated python-pygments packages fix security vulnerability

issue

Updated python-pygments packages fix security vulnerability

issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON