Source: pypy3 Version: 7.3.20+dfsg-3 Severity: important Tags: security upstream X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]> Control: found -1 7.3.19+dfsg-2
Hi, The following vulnerability was published for pypy3. CVE-2025-6069[0]: | The html.parser.HTMLParser class had worse-case quadratic complexity | when processing certain crafted malformed inputs potentially leading | to amplified denial-of-service. If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2025-6069 https://www.cve.org/CVERecord?id=CVE-2025-6069 [1] https://mail.python.org/archives/list/[email protected]/thread/K5PIYLR6EP3WR7ZOKKYQUWEDNQVUXOYM/ Please adjust the affected versions in the BTS as needed. Regards, Salvatore
