PT-2025-25656 · Python+10 · Html.Parser.Htmlparser+10

Jake Howard

+2

·

Published

2025-06-17

·

Updated

2026-04-29

·

CVE-2025-6069

CVSS v3.1

4.3

Medium

VectorAV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Name of the Vulnerable Software and Affected Versions html.parser.HTMLParser (affected versions not specified)
Description The issue concerns the html.parser.HTMLParser class, which has worse-case quadratic complexity when processing certain crafted malformed inputs. This could potentially lead to amplified denial-of-service attacks.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Weakness Enumeration

CWE-1333

Related Identifiers

ALSA-2025:23342
ALSA-2025:23530
AZL-64173
AZL-64178
BDU:2025-11082
BIT-LIBPYTHON-2025-6069
BIT-PYTHON-2025-6069
BIT-PYTHON-MIN-2025-6069
CVE-2025-6069
DLA-4354-1
ECHO-DC49-C687-112F
OESA-2025-1758
OESA-2025-2329
OESA-2025-2330
OESA-2025-2331
OESA-2025-2332
OESA-2025-2333
OPENSUSE-SU-2025:15285-1
OPENSUSE-SU-2025:15289-1
OPENSUSE-SU-2025:15290-1
OPENSUSE-SU-2025:15365-1
OPENSUSE-SU-2025:15366-1
OPENSUSE-SU-2025:15367-1
OPENSUSE-SU-2025:15713-1
OPENSUSE-SU-2026:20081-1
PSF-2025-10
SUSE-SU-2025:02232-1
SUSE-SU-2025:02297-1
SUSE-SU-2025:02358-1
SUSE-SU-2025:02359-1
SUSE-SU-2025:02427-1
SUSE-SU-2025:02460-1
SUSE-SU-2025:02523-1
SUSE-SU-2025:02597-1
SUSE-SU-2025:02717-1
SUSE-SU-2025:02767-1
SUSE-SU-2025:02778-1
SUSE-SU-2025:02802-1
SUSE-SU-2025:20492-1
SUSE-SU-2025:20539-1
SUSE-SU-2025:3706-1
SUSE-SU-2025_02297-1
SUSE-SU-2025_02358-1
SUSE-SU-2025_02523-1
SUSE-SU-2025_02717-1
SUSE-SU-2025_02778-1
SUSE-SU-2025_02802-1
SUSE-SU-2026:20125-1
SUSE-SU-2026:20154-1
USN-7710-1

Affected Products

Almalinux
Astra Linux
Centos
Debian
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu
Html.Parser.Htmlparser