VYPR

rpm package

opensuse/ghc-xml-conduit&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/ghc-xml-conduit&distro=openSUSE%20Tumbleweed

Vulnerabilities (1)

  • CVE-2021-4249Dec 18, 2022
    affected < 1.10.1.0-2.1fixed 1.10.1.0-2.1

    A vulnerability was found in xml-conduit. It has been classified as problematic. Affected is an unknown function of the file xml-conduit/src/Text/XML/Stream/Parse.hs of the component DOCTYPE Entity Expansion Handler. The manipulation leads to infinite loop. It is possible to laun