Golang.Org X Net Html vulnerabilities

CVE-2025-47911 [MEDIUM] CWE-407 golang.org/x/net/html has a Quadratic Parsing Complexity issue golang.org/x/net/html has a Quadratic Parsing Complexity issue The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to Denial of Service (DoS) if an attacker provides specially crafted HTML content.

CVE-2024-45338 [HIGH] CWE-770 Non-linear parsing of case-insensitive content in golang.org/x/net/html Non-linear parsing of case-insensitive content in golang.org/x/net/html An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service.