Lucene search
K

14 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in golang-golang-x-net, containerd-app

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to a Denial-of-Service DoS attack if an attacker provides specially crafted HTML content...

5.3CVSS6.7AI score0.00482EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/09 12:31 a.m.5 views

EUVD-2026-20763

The Sleuth Kit through 4.14.0 contains an out-of-bounds read vulnerability in the ISO9660 filesystem parser where the parsesusp function trusts lenid, lendes, and lensrc fields from the disk image to memcpy data into a stack buffer without verifying that the source data falls within the parsed SU...

4.8CVSS6AI score0.00126EPSS
Exploits0References5
OSV
OSV
added 2026/03/27 9:53 a.m.6 views

CLSA-2026-1774605210 expat: Fix of 2 CVEs

CVE-2026-32777: fix infinite loop while parsing DTD content - CVE-2026-32778: fix NULL pointer dereference in setContext on retry after OOM...

5.5CVSS7.1AI score0.00216EPSS
Exploits1References1
OSV
OSV
added 2026/03/20 9:17 p.m.6 views

MGASA-2026-0061 Updated expat packages fix security vulnerabilities

libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content. CVE-2026-32776 libexpat before 2.7.5 allows an infinite loop while parsing DTD content. CVE-2026-32777 libexpat before 2.7.5 allows a NULL pointer dereference in the function setContext on retry...

5.5CVSS5.8AI score0.00216EPSS
Exploits1References3
OSV
OSV
added 2026/02/05 6:16 p.m.7 views

AZL-76913 CVE-2025-58190 affecting package containerized-data-importer 1.62.0-1

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

5.3CVSS7.2AI score0.00482EPSS
Exploits1References1
NVD
NVD
added 2026/02/05 6:16 p.m.6 views

CVE-2025-58190

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

5.3CVSS0.00482EPSS
Exploits1References4
OSV
OSV
added 2026/02/05 6:16 p.m.11 views

AZL-77073 CVE-2025-58190 affecting package prometheus-adapter 0.12.0-4

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

5.3CVSS6.7AI score0.00482EPSS
Exploits1References1
OSV
OSV
added 2026/02/05 6:16 p.m.10 views

AZL-77040 CVE-2025-58190 affecting package multus 4.0.2-6

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

5.3CVSS7.4AI score0.00482EPSS
Exploits1References1
OSV
OSV
added 2026/02/05 6:16 p.m.8 views

AZL-76839 CVE-2025-58190 affecting package cni-plugins for versions less than 1.3.0-11

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

5.3CVSS6.7AI score0.00482EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/02/05 5:48 p.m.4 views

CVE-2025-58190 Infinite parsing loop in golang.org/x/net

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

5.5AI score0.00482EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/02/05 5:48 p.m.5 views

CVE-2025-58190

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

5.4AI score0.00482EPSS
Exploits1References5
CVE
CVE
added 2026/02/05 5:48 p.m.65 views

CVE-2025-58190

CVE-2025-58190 affects the html.Parse function in golang.org/x/net/html. The vulnerability is an infinite parsing loop triggered by certain inputs, leading to denial of service (DoS). The connected advisories confirm the issue but do not specify a patched version or remediation in the provided do...

5.3CVSS8.1AI score0.00482EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/02/05 5:23 p.m.10 views

GO-2026-4441 Infinite parsing loop in golang.org/x/net

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

5.3CVSS5.4AI score0.00482EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/02/05 12:0 a.m.9 views

Google Go 安全漏洞

Google Go is a static, strongly typed, compiled, concurrent programming language with garbage collection features from Google, Inc. of the United States. There is a security vulnerability in Google Go, which stems from the html.Parse function in golang.org/x/net/html. When processing certain...

5.3CVSS7.3AI score0.00482EPSS
Exploits1References4
Rows per page
Query Builder