CNNVD-202506-2931 Information

CNNVD ID

CNNVD-202506-2931

Related CVE

CVE-2025-6498

• CNNVD Published: 2025-06-23

Description (Chinese)

HTACG HTML Tidy是HTML Tidy Advocacy Community Group开源的一个 HTML 工具。 HTACG HTML Tidy 5.8.0版本存在安全漏洞，该漏洞源于src/alloc.c文件中defaultAlloc函数存在内存泄漏问题。

Description (English)

HTACG HTML Tidy is an HTML open-source HTML tool. There is a security gap in version 5.8.0 of HTACG HTML Tidy, which stems from the memory leakage problem of the default Alloc function in src/alloc.c.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

HTML Tidy Advocacy Community Group

Published

2025-06-23

Last Modified

2026-02-24

References

https://github.com/htacg/tidy-html5/issues/1152 https://vuldb.com/?submit.601009 https://vuldb.com/?id.313614 https://github.com/user-attachments/files/20438303/tidy-html5_crash_3.txt https://vuldb.com/?ctiid.313614 https://access.redhat.com/security/cve/cve-2025-6498

Patch

https://github.com/htacg/tidy-html5/releases