Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 554
Alerts This Week
Warning Icon 1 554

Debian 11: Critical HTTP Smuggling Flaw in Python-eventlet DLA-4289-1

debian lts
Calendar Grey September 2, 2025
Dist Debian Esm H88
Eventlet in Debian LTS is facing a severe HTTP Request Smuggling vulnerability that demands immediate action and updates to safeguard system integrity.
CVE-2025-58068 Eventlet is a concurrent networking library for Python

Summary

For Debian 11 bullseye, this problem has been fixed in version
0.26.1-7+deb11u2.

We recommend that you upgrade your python-eventlet packages.

For the detailed security status of python-eventlet please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/python-eventlet

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS


Severity
critical
Lowest
Low
Medium
High
Critical

Package: python-eventlet
Version: 0.26.1-7+deb11u2
CVE ID: CVE-2025-58068
Debian Bug:

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.