Fedora 43 : python-urllib3 (2026-724d1b1044)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-724d1b1044 advisory. 2.6.3 2026-01-07 - Fixed a high-severity security issue where decompression-bomb safeguards of the streaming API were bypassed when HTTP redirects were...

OPENSUSE-SU-2026:10026-1 python311-urllib3-2.6.2-1.1 on GA media

These are all security issues fixed in the python311-urllib3-2.6.2-1.1 package on the GA media of openSUSE Tumbleweed...

AZL-73730 CVE-2026-21441 affecting package python-urllib3 for versions less than 2.0.7-4

urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. urllib3 can perform decoding or decompression based on the HTTP...

Critical Photon OS Security Update - PHSA-2026-4.0-0938

Updates of 'gst-plugins-bad', 'sssd', 'capstone', 'python3-urllib3' packages of Photon OS have been released...

Medium: python-urllib3

Issue Overview: urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the decompression chain was unbounded allowing a malicious server to insert a virtually unlimited number of compression steps leading to high CPU usage an...

Critical Photon OS Security Update - PHSA-2026-5.0-0726

Updates of 'net-snmp', 'sssd', 'python3-urllib3' packages of Photon OS have been released...

Amazon Linux 2 : python-urllib3, --advisory ALAS2-2025-3110 (ALAS-2025-3110)

The version of python-urllib3 installed on the remote host is prior to 1.25.9-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-3110 advisory. urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number...

Debian: Security Advisory (DLA-4421-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 4421-1] python-urllib3 security update

Debian LTS Advisory DLA-4421-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin December 26, 2025 https://wiki.debian.org/LTS Package : python-urllib3 Version : 1.26.5-1exp1+deb11u2 CVE ID : CVE-2025-50181 CVE-2025-66418 Debian Bug : 1108076 1122030 Vulnerabilities...

Debian dla-4421 : python3-urllib3 - security update

The remote Debian 11 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-4421 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4421-1 [email protected]...

DLA-4421-1 python-urllib3 - security update

Bulletin has no description...

Huawei EulerOS: Security Advisory for python-urllib3 (EulerOS-SA-2025-2598)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for python-urllib3 (EulerOS-SA-2025-2563)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-66418 affecting package python-urllib3 for versions less than 2.0.7-3

CVE-2025-66418 affecting package python-urllib3 for versions less than 2.0.7-3. A patched version of the package is available...

CVE-2025-66471 affecting package python-urllib3 for versions less than 2.0.7-3

CVE-2025-66471 affecting package python-urllib3 for versions less than 2.0.7-3. A patched version of the package is available...

EulerOS Virtualization 2.13.0 : python-urllib3 (EulerOS-SA-2025-2598)

According to the versions of the python-urllib3 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : urllib3 is a user-friendly HTTP client library for Python. Prior to 2.5.0, it is possible to disable redirects for all...

[SECURITY] Fedora 43 Update: python-urllib3-2.6.1-1.fc43

urllib3 is a powerful, user-friendly HTTP client for Python. urllib3 brings many critical features that are missing from the Python standard libraries: =E2=80=A2 Thread safety. =E2=80=A2 Connection pooling. =E2=80=A2 Client-side SSL/TLS verification. =E2=80=A2 File uploads with multipart encoding...

Ubuntu: Security Advisory (USN-7927-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 43 : brotli / perl-Alien-Brotli / python-urllib3 (2025-d93200cf16)

The remote Fedora 43 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2025-d93200cf16 advisory. Update brotli to 1.2.0 and python-urllib3 to 2.6.1. In python-urllib3: - Fixed a security issue where streaming API could improperly handle highly...

CVE-2025-66471 vulnerabilities

Vulnerabilities for packages: text-generation-inference, datadog-agent, nemo, ggshield, kserve, tritonserver-backend-vllm-cuda-12.9, kubeflow-pipelines-visualization-server, ansible-operator-fips, py3-urllib3, py3-hashin, request-1276, dask-kubernetes, k8s-sidecar, spamcheck, kubeflow-pipelines,...