Ubuntu Security Notice 855-1 - Mark Martinec discovered that HTML::Parser incorrectly handled strings with incomplete entities. An attacker could send specially crafted input to applications that use HTML::Parser and cause a denial of service.
fc5f9a70082c36236c726e7102bbd6f762acbe9ae8cb6e13f5c303504e794eb9