New: Corgea AI Pentesting — autonomous penetration testing in hours, not weeks
UNKNOWN Go

Non-linear parsing of case-insensitive content in golang.org/x/net/html

GHSA-w32m-9786-jp63 · CVE-2024-45338 · GO-2024-3333

Published · Modified

Description

An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service.

Ready to move

Start Securing

Free, no credit card | First findings in minutes