Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/golang-golang-x-net@1:0.47.0-1
purl pkg:deb/debian/golang-golang-x-net@1:0.47.0-1
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-73s2-6cpr-gkdu golang.org/x/net/html has a Quadratic Parsing Complexity issue The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to Denial of Service (DoS) if an attacker provides specially crafted HTML content. CVE-2025-47911
GHSA-w4gw-w5jq-g9jh
VCID-asx6-ds7x-6ubz golang.org/x/net/html: Infinite parsing loop in golang.org/x/net CVE-2025-58190

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T10:03:02.170299+00:00 Debian Importer Fixing VCID-asx6-ds7x-6ubz https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:55:32.272149+00:00 Debian Importer Fixing VCID-73s2-6cpr-gkdu https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T06:44:31.961379+00:00 Debian Importer Fixing VCID-asx6-ds7x-6ubz https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:38:37.535292+00:00 Debian Importer Fixing VCID-73s2-6cpr-gkdu https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-08T18:40:33.003845+00:00 Debian Importer Fixing VCID-asx6-ds7x-6ubz https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T18:25:01.442161+00:00 Debian Importer Fixing VCID-73s2-6cpr-gkdu https://security-tracker.debian.org/tracker/data/json 38.1.0