Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 41: Critical Fix for python-starlette CVE-2025-62727 Advisory

fedora
Calendar Grey November 7, 2025
Dist Fedora Esm H88
Critical security patch for python-starlette in Fedora 41 addressing CVE-2025-62727. Important update to apply.
Backport security fix for CVE-2025-62727, GHSA-7f5h-v6xp-fcq8

Summary

Starlette is a lightweight ASGI framework/toolkit, which is ideal for building

async web services in Python.

It is production-ready, and gives you the following:

\u2022 A lightweight, low-complexity HTTP web framework.

\u2022 WebSocket support.

\u2022 In-process background tasks.

\u2022 Startup and shutdown events.

\u2022 Test client built on requests.

\u2022 CORS, GZip, Static Files, Streaming responses.

\u2022 Session and Cookie support.

\u2022 100% test coverage.

\u2022 100% type annotated codebase.

\u2022 Few hard dependencies.

\u2022 Compatible with asyncio and trio backends.

\u2022 Great overall performance against independent benchmarks.

Update Information:

Backport security fix for CVE-2025-62727, GHSA-7f5h-v6xp-fcq8

Topics%20covered

Topics Covered

security advisory fedora critical remote access python-starlette cve-2025-62727

Change Log

* Wed Oct 29 2025 Benjamin A. Beasley - 0.42.0-3 - Backport security fix for CVE-2025-62727, GHSA-7f5h-v6xp-fcq8

References

Fedora Update Notification FEDORA-2025-10d2e6260b 2025-11-07 02:35:35.301766+00:00
Name : python-starlette Product : Fedora 41 Version : 0.42.0 Release : 3.fc41 URL : https://www.starlette.io/ Summary : The little ASGI library that shines Description : Starlette is a lightweight ASGI framework/toolkit, which is ideal for building async web services in Python.
It is production-ready, and gives you the following:
\u2022 A lightweight, low-complexity HTTP web framework. \u2022 WebSocket support. \u2022 In-process background tasks. \u2022 Startup and shutdown events. \u2022 Test client built on requests. \u2022 CORS, GZip, Static Files, Streaming responses. \u2022 Session and Cookie support. \u2022 100% test coverage. \u2022 100% type annotated codebase. \u2022 Few hard dependencies. \u2022 Compatible with asyncio and trio backends. \u2022 Great overall performance against independent benchmarks.

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-10d2e6260b' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: python-starlette
Product: Fedora 41
Version: 0.42.0
Release: 3.fc41
URL: https://www.starlette.io/
Summary: The little ASGI library that shines

Topics%20covered

Topics Covered

security advisory fedora critical remote access python-starlette cve-2025-62727

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here