Описание
The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | see notes |
| esm-infra/focal | not-affected | see notes |
| jammy | not-affected | see notes |
| noble | not-affected | see notes |
| questing | not-affected | see notes |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | see notes |
| esm-apps/bionic | not-affected | see notes |
| esm-apps/noble | not-affected | see notes |
| esm-apps/xenial | not-affected | see notes |
| esm-infra/focal | not-affected | see notes |
| jammy | not-affected | see notes |
| noble | not-affected | see notes |
| questing | not-affected | see notes |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | needed | |
| esm-apps/jammy | released | 1:0.0+git20211209.491a49a+dfsg-1ubuntu0.1~esm2 |
| esm-apps/noble | released | 1:0.21.0+dfsg-1ubuntu0.1~esm2 |
| jammy | needed | |
| noble | needed | |
| questing | needed | |
| upstream | released | 0.45.0 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-apps/bionic | released | 1:0.0+git20170629.c81e7f2+dfsg-2ubuntu0.1~esm2 |
| esm-apps/focal | released | 1:0.0+git20190811.74dc4d7+dfsg-1ubuntu0.1~esm2 |
| esm-infra/xenial | released | 1:0.0+git20160110.4fd4a9f-1ubuntu0.1~esm2 |
| jammy | DNE | |
| noble | DNE | |
| questing | DNE | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | see notes |
| esm-apps/bionic | not-affected | see notes |
| esm-apps/xenial | not-affected | see notes |
| esm-infra/focal | not-affected | see notes |
| jammy | not-affected | see notes |
| noble | not-affected | see notes |
| questing | not-affected | see notes |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra/xenial | needed | |
| jammy | DNE | |
| noble | DNE | |
| questing | DNE | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-apps/focal | not-affected | code not present |
| esm-infra/bionic | needed | |
| esm-infra/xenial | needed | |
| jammy | DNE | |
| noble | DNE | |
| questing | DNE | |
| upstream | needs-triage |
Показывать по
Ссылки на источники
EPSS
5.3 Medium
CVSS3
Связанные уязвимости
The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.
The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.
The html.Parse function in golang.org/x/net/html has quadratic parsing ...
golang.org/x/net/html has a Quadratic Parsing Complexity issue
EPSS
5.3 Medium
CVSS3