VYPR

rpm package

almalinux/libbrotli

pkg:rpm/almalinux/libbrotli

Vulnerabilities (1)

  • CVE-2025-6176HigOct 31, 2025
    affected < 1.1.0-7.el10_1fixed 1.1.0-7.el10_1

    Scrapy versions up to 2.13.2 are vulnerable to a denial of service (DoS) attack due to a flaw in its brotli decompression implementation. The protection mechanism against decompression bombs fails to mitigate the brotli variant, allowing remote servers to crash clients with less