AZL-64323

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-64323.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-64323

Upstream

CVE-2025-6497

Published

2025-06-23T01:15:22Z

Modified

2026-04-21T04:32:21.478367Z

Summary

CVE-2025-6497 affecting package tidy 5.8.0-6

Details

A vulnerability was found in HTACG tidy-html5 5.8.0. It has been rated as problematic. This issue affects the function prvTidyParseNamespace of the file src/parser.c. The manipulation leads to reachable assertion. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.

References

https://nvd.nist.gov/vuln/detail/CVE-2025-6497

Affected packages

Azure Linux:3 / tidy

Package

Name: tidy
Purl: pkg:rpm/azure-linux/tidy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

5.8.0-6

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-64323.json"