You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2025 12084
About this tag
CVE-2025-12084 is a security vulnerability in CPython's xml.dom.minidom module that causes quadratic-time behavior in the node ID cache clearing routine when processing deeply nested XML documents. This flaw can be exploited to trigger a denial of service (DoS) condition. The issue has been fixed upstream, and users are advised to apply the patch or mitigations immediately. This tag covers discussions on WindowsForum.com about the vulnerability details, patch guidance, and steps to secure systems against this availability risk.
A subtle but consequential performance flaw in CPython’s xml.dom.minidom has been assigned CVE‑2025‑12084 after maintainers confirmed a quadratic‑time behavior in the node ID cache clearing routine that can be triggered when constructing deeply nested XML documents; the defect has been fixed...