VYPR

rpm package

opensuse/go-sendxmpp&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/go-sendxmpp&distro=openSUSE%20Tumbleweed

Vulnerabilities (3)

  • CVE-2025-58190Feb 5, 2026
    affected < 0.15.1-1.1fixed 0.15.1-1.1

    The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.

  • CVE-2025-47911Feb 5, 2026
    affected < 0.15.1-1.1fixed 0.15.1-1.1

    The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.

  • CVE-2025-22872MedApr 16, 2025
    affected < 0.15.0-1.1fixed 0.15.0-1.1

    The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character (/) as self-closing. When directly using Tokenizer, this can result in such tags incorrectly being marked as self-closing, and when using the Parse functions, this can resul