CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/01/26 12:0 a.m.•4 views

ALSA-2026:1224 Important: python3.11-urllib3 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

8.9CVSS7.1AI score0.0068EPSS

OSV•added 2026/01/26 12:0 a.m.•11 views

ALSA-2026:1241 Important: resource-agents security update

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability HA environment. Security Fixes: urllib3: urllib3: Unbounded decompression chain leads to resource...

8.9CVSS6.6AI score0.0068EPSS

AlmaLinux•added 2026/01/26 12:0 a.m.•5 views

Important: python-urllib3 security update

8.9CVSS5.9AI score0.0068EPSS

OSV•added 2026/01/26 12:0 a.m.•6 views

ALSA-2026:1088 Important: python3.12-urllib3 security update

8.9CVSS5.9AI score0.0068EPSS

OSV•added 2026/01/26 12:0 a.m.•5 views

ALSA-2026:1089 Important: python3.11-urllib3 security update

8.9CVSS7.3AI score0.0068EPSS

OPENSUSE Linux•added 2026/01/25 12:0 a.m.•3 views

Security update for python-urllib3 (moderate)

openSUSE security update: security update for python-urllib3 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20088-1 Rating: moderate References: bsc1256331 Cross-References: CVE-2026-21441 CVSS scores: CVE-2026-21441 SUSE : 4.3...

4.3CVSS5.4AI score0.0068EPSS

Exploits0References1

Tenable Nessus•added 2026/01/24 12:0 a.m.•3 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python-urllib3 (SUSE-SU-2026:0255-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2026:0255-1 advisory. - CVE-2026-21441: Fixed excessive resource consumption during decompression of data in HTTP redirect...

8.9CVSS5.6AI score0.0068EPSS

Exploits0References4

OSV•added 2026/01/23 12:24 p.m.•10 views

OESA-2026-1235 python-urllib3 security update

HTTP library with thread-safe connection pooling, file post support, sanity friendly, and more. Security Fixes: urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the decompression chain was unbounded allowing a malicious...

8.9CVSS5.5AI score0.00622EPSS

OSV•added 2026/01/23 12:24 p.m.•5 views

OESA-2026-1234 python-urllib3 security update

8.9CVSS5.5AI score0.00622EPSS

OSV•added 2026/01/23 12:24 p.m.•4 views

OESA-2026-1233 python-urllib3 security update

8.9CVSS5.5AI score0.00622EPSS

Debian•added 2026/01/23 7:24 a.m.•6 views

[SECURITY] [DLA 4446-1] python-urllib3 security update

Debian LTS Advisory DLA-4446-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin January 23, 2026 https://wiki.debian.org/LTS Package : python-urllib3 Version : 1.26.5-1exp1+deb11u3 CVE ID : CVE-2026-21441 Debian Bug : 1125062 It was discovered that python-urllib3, a...

8.9CVSS6.6AI score0.0068EPSS

Exploits0

Amazon•added 2026/01/23 12:0 a.m.•10 views

Medium: python3.11-pip

Issue Overview: urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the decompression chain was unbounded allowing a malicious server to insert a virtually unlimited number of compression steps leading to high CPU usage an...

8.9CVSS7.3AI score0.00622EPSS

Exploits0

Amazon•added 2026/01/23 12:0 a.m.•7 views

Medium: python3.12-pip

8.9CVSS7.3AI score0.00622EPSS

Exploits0

Tenable Nessus•added 2026/01/23 12:0 a.m.•3 views

Amazon Linux 2023 : python3.11-pip, python3.11-pip-wheel (ALAS2023-2026-1368)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1368 advisory. urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the decompression chain was unbounded allowing a malicious server...

8.9CVSS5.9AI score0.00622EPSS

Exploits0References6

OSV•added 2026/01/22 4:8 p.m.•1 views

SUSE-SU-2026:0255-1 Security update for python-urllib3

This update for python-urllib3 fixes the following issues: - CVE-2026-21441: Fixed excessive resource consumption during decompression of data in HTTP redirect responses bsc1256331...

8.9CVSS6.7AI score0.0068EPSS

OSV•added 2026/01/22 3:55 p.m.•5 views

OPENSUSE-SU-2026:20088-1 Security update for python-urllib3

This update for python-urllib3 fixes the following issues: - CVE-2026-21441: Fixed excessive resource consumption during decompression of data in HTTP redirect responses bsc1256331...

8.9CVSS7.1AI score0.0068EPSS

OSV•added 2026/01/22 3:46 p.m.•7 views

SUSE-SU-2026:20131-1 Security update for python-urllib3

This update for python-urllib3 fixes the following issues: - CVE-2026-21441: Fixed excessive resource consumption during decompression of data in HTTP redirect responses bsc1256331...

8.9CVSS6.7AI score0.0068EPSS

OSV•added 2026/01/22 3:46 p.m.•4 views

SUSE-SU-2026:20157-1 Security update for python-urllib3

This update for python-urllib3 fixes the following issues: - CVE-2026-21441: Fixed excessive resource consumption during decompression of data in HTTP redirect responses bsc1256331...

8.9CVSS7.1AI score0.0068EPSS