Alerts This Week
Warning Icon 1 646
Alerts This Week
Warning Icon 1 646

Fedora 43: python-fastapi Important DoS Fix 2025-4154ea83d0

fedora
Calendar Grey November 5, 2025
Dist Fedora Esm H88
Critical update for Fedora 43 on python-fastapi fixes serious issues. Immediate attention recommended for security.
uv / python-uv-build 0.9.5 https://github.com/astral-sh/uv/blob/0.9.5/CHANGELOG.md ruff 0.14.2 https://github.com/astral-sh/ruff/blob/0.14.2/CHANGELOG.md Pydantic 2.12.3

Summary

FastAPI is a modern, fast (high-performance), web framework for building APIs

with Python based on standard Python type hints.

The key features are:

\u2022 Fast: Very high performance, on par with NodeJS and Go (thanks to Starlette

and Pydantic). One of the fastest Python frameworks available.

\u2022 Fast to code: Increase the speed to develop features by about 200% to

300%. *

\u2022 Fewer bugs: Reduce about 40% of human (developer) induced errors. *

\u2022 Intuitive: Great editor support. Completion everywhere. Less time

debugging.

\u2022 Easy: Designed to be easy to use and learn. Less time reading docs.

\u2022 Short: Minimize code duplication. Multiple features from each parameter

declaration. Fewer bugs.

\u2022 Robust: Get production-ready code. With automatic interactive

documentation.

\u2022 Standards-based: Based on (and fully compatible with) the open standards

for APIs: OpenAPI (previously known as Swagger) and JSON Schema.

* estimation based on tests on an internal development team, building

production applications.

Update Information:

uv / python-uv-build 0.9.5 https://github.com/astral-sh/uv/blob/0.9.5/CHANGELOG.md ruff 0.14.2 https://github.com/astral-sh/ruff/blob/0.14.2/CHANGELOG.md Pydantic 2.12.3 Blog post maturin 1.9.6 https://github.com/PyO3/maturin/blob/v1.9.6/Changelog.md python-typing-inspection 0.4.2 (2025-10-01) Add typing_objects.is_noextraitems() python-jiter 0.11.0 https://github.com/pydantic/jiter/releases/tag/v0.11.0 python-pydantic-extra-types 2.10.6 https://github.com/pydantic/pydantic-extra-types/releases/tag/v2.10.6 Typer 0.20.0 Features \u2728 Enable command suggestions on typo by default. Upgrades \u2b06\ufe0f Add (official) support for Python 3.14. Internal Assorted small enhancements. FastAPI 0.120.1 Upgrades \u2b06\ufe0f Bump Starlette to 0.50.0. Internal \U0001f527 Add license and license-files to pyproject.toml, remove License from classifiers. 0.120.0 There are no major nor breaking changes in this release. \u2615\ufe0f The internal reference documentation now uses annotated_doc.Doc i...

Topics%20covered

Topics Covered

security advisory security issue fedora DoS important python-fastapi

Change Log

* Mon Oct 27 2025 Packit - 0.120.1-1 - Update to 0.120.1 upstream release - Resolves: rhbz#2406610 * Thu Oct 23 2025 Packit - 0.120.0-1 - Update to 0.120.0 upstream release - Resolves: rhbz#2406145 * Mon Oct 20 2025 Benjamin A. Beasley - 0.119.1-1 - Update to 0.119.1 upstream release - Resolves: rhbz#2405079 - Revert "Ignore UserWarning from Pydantic about v1 and Python 3.14" * Sat Oct 18 2025 Benjamin A. Beasley - 0.119.0-2 - Ignore UserWarning from Pydantic about v1 and Python 3.14 * Sat Oct 11 2025 Packit - 0.119.0-1 - Update to 0.119.0 upstream release - Resolves: rhbz#2403294 * Fri Oct 10 2025 Packit - 0.118.3-1 - Update to 0.118.3 upstream release - Resolves: rhbz#2403079 * Wed Oct 8 2025 Packit - 0.118.2-1 - Update to 0.118.2 upstream release - Resolves: rhbz#2402517 * Wed Oct 8 2025 Packit - 0.118.1-1 - Update to 0.118.1 upstream release - Resolves: rhbz#2402479 * Mon Sep 29 2025 Packit - 0.118.0-1 - Update to 0.118.0 upstream release - Resolves: rhbz#2400050

References


[ 1 ] Bug #2360699 - ruff-0.14.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2360699 [ 2 ] Bug #2371174 - maturin-1.9.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2371174 [ 3 ] Bug #2395006 - rust-serde_json-1.0.145 is available https://bugzilla.redhat.com/show_bug.cgi?id=2395006 [ 4 ] Bug #2395167 - python-jiter-0.11.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2395167 [ 5 ] Bug #2398117 - rust-regex-1.11.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2398117 [ 6 ] Bug #2398118 - rust-regex-automata-0.4.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=2398118 [ 7 ] Bug #2398161 - fastapi-cloud-cli-0.2.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2398161 [ 8 ] Bug #2400050 - python-fastapi-0.118.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2400050 [ 9 ] Bug #2400578 - python-typing-inspection-0.4.2 is available ...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-4154ea83d0' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: python-fastapi
Product: Fedora 43
Version: 0.120.1
Release: 1.fc43
URL: https://github.com/fastapi/fastapi
Summary: FastAPI framework

Topics%20covered

Topics Covered

security advisory security issue fedora DoS important python-fastapi

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here