diff --git a/test/cvrf-openEuler-SA-2024-1488.xml b/test/cvrf-openEuler-SA-2024-1488.xml
new file mode 100644
index 0000000..5fd9425
--- /dev/null
+++ b/test/cvrf-openEuler-SA-2024-1488.xml
@@ -0,0 +1,137 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<cvrfdoc xmlns="http://www.icasi.org/CVRF/schema/cvrf/1.1" xmlns:cvrf="http://www.icasi.org/CVRF/schema/cvrf/1.1">
+	<DocumentTitle xml:lang="en">An update for golang is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS,openEuler-22.03-LTS-SP1,openEuler-22.03-LTS-SP2 and openEuler-22.03-LTS-SP3</DocumentTitle>
+	<DocumentType>Security Advisory</DocumentType>
+	<DocumentPublisher Type="Vendor">
+		<ContactDetails>openeuler-security@openeuler.org</ContactDetails>
+		<IssuingAuthority>openEuler security committee</IssuingAuthority>
+	</DocumentPublisher>
+	<DocumentTracking>
+		<Identification>
+			<ID>openEuler-SA-2024-1488</ID>
+		</Identification>
+		<Status>Final</Status>
+		<Version>1.0</Version>
+		<RevisionHistory>
+			<Revision>
+				<Number>1.0</Number>
+				<Date>2024-04-19</Date>
+				<Description>Initial</Description>
+			</Revision>
+		</RevisionHistory>
+		<InitialReleaseDate>2024-04-19</InitialReleaseDate>
+		<CurrentReleaseDate>2024-04-19</CurrentReleaseDate>
+		<Generator>
+			<Engine>openEuler SA Tool V1.0</Engine>
+			<Date>2024-04-19</Date>
+		</Generator>
+	</DocumentTracking>
+	<DocumentNotes>
+		<Note Title="Synopsis" Type="General" Ordinal="1" xml:lang="en">golang security update</Note>
+		<Note Title="Summary" Type="General" Ordinal="2" xml:lang="en">An update for golang is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS,openEuler-22.03-LTS-SP1,openEuler-22.03-LTS-SP2 and openEuler-22.03-LTS-SP3.</Note>
+		<Note Title="Description" Type="General" Ordinal="3" xml:lang="en">The Go Programming Language.
+
+Security Fix(es):
+
+An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request&apos;s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.(CVE-2023-45288)</Note>
+		<Note Title="Topic" Type="General" Ordinal="4" xml:lang="en">An update for golang is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS,openEuler-22.03-LTS-SP1,openEuler-22.03-LTS-SP2 and openEuler-22.03-LTS-SP3.
+
+openEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.</Note>
+		<Note Title="Severity" Type="General" Ordinal="5" xml:lang="en">High</Note>
+		<Note Title="Affected Component" Type="General" Ordinal="6" xml:lang="en">golang</Note>
+	</DocumentNotes>
+	<DocumentReferences>
+		<Reference Type="Self">
+			<URL>https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2024-1488</URL>
+		</Reference>
+		<Reference Type="openEuler CVE">
+			<URL>https://www.openeuler.org/en/security/cve/detail.html?id=CVE-2023-45288</URL>
+		</Reference>
+		<Reference Type="Other">
+			<URL>https://nvd.nist.gov/vuln/detail/CVE-2023-45288</URL>
+		</Reference>
+	</DocumentReferences>
+	<ProductTree xmlns="http://www.icasi.org/CVRF/schema/prod/1.1">
+		<Branch Type="Product Name" Name="openEuler">
+			<FullProductName ProductID="openEuler-20.03-LTS-SP1" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">openEuler-20.03-LTS-SP1</FullProductName>
+			<FullProductName ProductID="openEuler-20.03-LTS-SP4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP4">openEuler-20.03-LTS-SP4</FullProductName>
+			<FullProductName ProductID="openEuler-22.03-LTS" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">openEuler-22.03-LTS</FullProductName>
+			<FullProductName ProductID="openEuler-22.03-LTS-SP1" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP1">openEuler-22.03-LTS-SP1</FullProductName>
+			<FullProductName ProductID="openEuler-22.03-LTS-SP2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP2">openEuler-22.03-LTS-SP2</FullProductName>
+			<FullProductName ProductID="openEuler-22.03-LTS-SP3" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP3">openEuler-22.03-LTS-SP3</FullProductName>
+		</Branch>
+		<Branch Type="Package Arch" Name="aarch64">
+			<FullProductName ProductID="golang-1.15.7-43" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">golang-1.15.7-43.oe1.aarch64.rpm</FullProductName>
+			<FullProductName ProductID="golang-1.15.7-43" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP4">golang-1.15.7-43.oe2003sp4.aarch64.rpm</FullProductName>
+			<FullProductName ProductID="golang-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">golang-1.17.3-32.oe2203.aarch64.rpm</FullProductName>
+			<FullProductName ProductID="golang-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP1">golang-1.17.3-32.oe2203sp1.aarch64.rpm</FullProductName>
+			<FullProductName ProductID="golang-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP2">golang-1.17.3-32.oe2203sp2.aarch64.rpm</FullProductName>
+			<FullProductName ProductID="golang-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP3">golang-1.17.3-32.oe2203sp3.aarch64.rpm</FullProductName>
+		</Branch>
+		<Branch Type="Package Arch" Name="noarch">
+			<FullProductName ProductID="golang-help-1.15.7-43" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">golang-help-1.15.7-43.oe1.noarch.rpm</FullProductName>
+			<FullProductName ProductID="golang-devel-1.15.7-43" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">golang-devel-1.15.7-43.oe1.noarch.rpm</FullProductName>
+			<FullProductName ProductID="golang-help-1.15.7-43" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP4">golang-help-1.15.7-43.oe2003sp4.noarch.rpm</FullProductName>
+			<FullProductName ProductID="golang-devel-1.15.7-43" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP4">golang-devel-1.15.7-43.oe2003sp4.noarch.rpm</FullProductName>
+			<FullProductName ProductID="golang-help-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">golang-help-1.17.3-32.oe2203.noarch.rpm</FullProductName>
+			<FullProductName ProductID="golang-devel-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">golang-devel-1.17.3-32.oe2203.noarch.rpm</FullProductName>
+			<FullProductName ProductID="golang-help-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP1">golang-help-1.17.3-32.oe2203sp1.noarch.rpm</FullProductName>
+			<FullProductName ProductID="golang-devel-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP1">golang-devel-1.17.3-32.oe2203sp1.noarch.rpm</FullProductName>
+			<FullProductName ProductID="golang-devel-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP2">golang-devel-1.17.3-32.oe2203sp2.noarch.rpm</FullProductName>
+			<FullProductName ProductID="golang-help-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP2">golang-help-1.17.3-32.oe2203sp2.noarch.rpm</FullProductName>
+			<FullProductName ProductID="golang-help-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP3">golang-help-1.17.3-32.oe2203sp3.noarch.rpm</FullProductName>
+			<FullProductName ProductID="golang-devel-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP3">golang-devel-1.17.3-32.oe2203sp3.noarch.rpm</FullProductName>
+		</Branch>
+		<Branch Type="Package Arch" Name="src">
+			<FullProductName ProductID="golang-1.15.7-43" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">golang-1.15.7-43.oe1.src.rpm</FullProductName>
+			<FullProductName ProductID="golang-1.15.7-43" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP4">golang-1.15.7-43.oe2003sp4.src.rpm</FullProductName>
+			<FullProductName ProductID="golang-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">golang-1.17.3-32.oe2203.src.rpm</FullProductName>
+			<FullProductName ProductID="golang-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP1">golang-1.17.3-32.oe2203sp1.src.rpm</FullProductName>
+			<FullProductName ProductID="golang-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP2">golang-1.17.3-32.oe2203sp2.src.rpm</FullProductName>
+			<FullProductName ProductID="golang-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP3">golang-1.17.3-32.oe2203sp3.src.rpm</FullProductName>
+		</Branch>
+		<Branch Type="Package Arch" Name="x86_64">
+			<FullProductName ProductID="golang-1.15.7-43" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">golang-1.15.7-43.oe1.x86_64.rpm</FullProductName>
+			<FullProductName ProductID="golang-1.15.7-43" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP4">golang-1.15.7-43.oe2003sp4.x86_64.rpm</FullProductName>
+			<FullProductName ProductID="golang-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">golang-1.17.3-32.oe2203.x86_64.rpm</FullProductName>
+			<FullProductName ProductID="golang-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP1">golang-1.17.3-32.oe2203sp1.x86_64.rpm</FullProductName>
+			<FullProductName ProductID="golang-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP2">golang-1.17.3-32.oe2203sp2.x86_64.rpm</FullProductName>
+			<FullProductName ProductID="golang-1.17.3-32" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP3">golang-1.17.3-32.oe2203sp3.x86_64.rpm</FullProductName>
+		</Branch>
+	</ProductTree>
+	<Vulnerability Ordinal="1" xmlns="http://www.icasi.org/CVRF/schema/vuln/1.1">
+		<Notes>
+			<Note Title="Vulnerability Description" Type="General" Ordinal="1" xml:lang="en">An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request&apos;s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.</Note>
+		</Notes>
+		<ReleaseDate>2024-04-19</ReleaseDate>
+		<CVE>CVE-2023-45288</CVE>
+		<ProductStatuses>
+			<Status Type="Fixed">
+				<ProductID>openEuler-20.03-LTS-SP1</ProductID>
+				<ProductID>openEuler-20.03-LTS-SP4</ProductID>
+				<ProductID>openEuler-22.03-LTS</ProductID>
+				<ProductID>openEuler-22.03-LTS-SP1</ProductID>
+				<ProductID>openEuler-22.03-LTS-SP2</ProductID>
+				<ProductID>openEuler-22.03-LTS-SP3</ProductID>
+			</Status>
+		</ProductStatuses>
+		<Threats>
+			<Threat Type="Impact">
+				<Description>High</Description>
+			</Threat>
+		</Threats>
+		<CVSSScoreSets>
+			<ScoreSet>
+				<BaseScore>7.5</BaseScore>
+				<Vector>AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H</Vector>
+			</ScoreSet>
+		</CVSSScoreSets>
+		<Remediations>
+			<Remediation Type="Vendor Fix">
+				<Description>golang security update</Description>
+				<DATE>2024-04-19</DATE>
+				<URL>https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2024-1488</URL>
+			</Remediation>
+		</Remediations>
+	</Vulnerability>
+</cvrfdoc>
\ No newline at end of file