An issue was discovered jtidy thru r938 allows attackers to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies. https://github.com/trajano/jtidy/issues/4
Created jtidy tracking bugs for this issue: Affects: fedora-37 [bug 2230046] Affects: fedora-38 [bug 2230047]