Overview

File _patchinfo of Package patchinfo.41605

<patchinfo incident="41605">
  <issue tracker="bnc" id="1251442">VUL-0: CVE-2025-47911: helm: golang.org/x/net/html: various algorithms with quadratic complexity when parsing HTML documents</issue>
  <issue tracker="bnc" id="1251649">VUL-0: CVE-2025-58190: helm: golang.org/x/net/html: excessive memory consumption by `html.ParseFragment` when processing specially crafted input</issue>
  <issue tracker="bnc" id="1246152">VUL-0: CVE-2025-53547: helm: Helm Chart Code Execution</issue>
  <issue tracker="cve" id="2025-58190"/>
  <issue tracker="cve" id="2025-47911"/>
  <issue tracker="cve" id="2025-53547"/>
  <packager>dirkmueller</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for helm</summary>
  <description>This update for helm fixes the following issues:

- Update to version 3.19.1
- CVE-2025-53547: Fixed local code execution in Helm Chart. (bsc#1246152)
- CVE-2025-58190: Fixed excessive memory consumption by `html.ParseFragment` when processing specially crafted input. (bsc#1251649)
- CVE-2025-47911: Fixed various algorithms with quadratic complexity when parsing HTML documents. (bsc#1251442)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places