Fedora 44 python-pulp-glue Important CVE-2026-25645 Malformed Header Fix

pulp-glue is a library to ease the programmatic communication with the Pulp3

API. It helps to abstract different resource types with so called contexts and

allows to build or even provides complex workflows like chunked upload or

waiting on tasks.

It is built around an openapi3 parser to provide client side validation of http

requests, while accounting for known quirks and incompatibilities between

different Pulp server component versions.

2.33.1 (2026-03-30) Bugfixes - Fixed test cleanup for CVE-2026-25645 to avoid leaving unnecessary files in the tmp directory. - Fixed Content-Type header parsing for malformed values. - Improved error consistency for malformed header values. 2.33.0 (2026-03-25) Announcements - \U0001f4e3 Requests is adding inline types. If you have a typed code base that uses Requests, please take a look at #7271. Give it a try, and report any gaps or feedback you may have in the issue. \U0001f4e3 Security - CVE-2026-25645 requests.utils.extract_zipped_paths now extracts contents to a non-deterministic location to prevent malicious file replacement. This does not affect default usage of Requests, only applications calling the utility function directly. Improvements - Migrated to a PEP 517 build system using setuptools. Bugfixes - Fixed an issue where an empty netrc entry could cause malformed authentication to be applied to Requests on Python 3.11+. Deprecations - Dropped support for Pyt...