VYPR

rpm package

opensuse/headscale&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/headscale&distro=openSUSE%20Tumbleweed

Vulnerabilities (3)

  • CVE-2025-58190Feb 5, 2026
    affected < 0.26.1-2.1fixed 0.26.1-2.1

    The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.

  • CVE-2025-47911Feb 5, 2026
    affected < 0.26.1-2.1fixed 0.26.1-2.1

    The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.

  • CVE-2025-30204HigMar 21, 2025
    affected < 0.25.1-2.1fixed 0.25.1-2.1

    golang-jwt is a Go implementation of JSON Web Tokens. Starting in version 3.2.0 and prior to versions 5.2.2 and 4.5.2, the function parse.ParseUnverified splits (via a call to strings.Split) its argument (which is untrusted data) on periods. As a result, in the face of a maliciou