Alerts This Week
Warning Icon 1 626
Alerts This Week
Warning Icon 1 626

Warning: Undefined array key "Description" in /var/www/www.linuxsecurity.com-443/html/lsadvisories/lsadvisories.php on line 220

Fedora 43 Python3.10 Security Updates to Prevent Denial of Service Attacks

fedora
Calendar Grey March 15, 2026
Dist Fedora Esm H88
Fedora 43 python3.10 security advisory with updates for important denial of service threats, review details for patching.
Update to 3.10.20

Summary

Python 3.10 is an accessible, high-level, dynamically typed, interpreted

programming language, designed with an emphasis on code readability.

It includes an extensive standard library, and has a vast ecosystem of

third-party libraries.

The python3.10 package provides the "python3.10" executable: the reference

interpreter for the Python language, version 3.

The majority of its standard library is provided in the python3.10-libs package,

which should be installed automatically along with python3.10.

The remaining parts of the Python standard library are broken out into the

python3.10-tkinter and python3.10-test packages, which may need to be installed

separately.

Documentation for Python is provided in the python3.10-docs package.

Packages containing additional libraries for Python are generally named with

the "python3.10-" prefix.

Update Information:

Update to 3.10.20

Topics%20covered

Topics Covered

security advisory denial of service fedora important CVE identifier python3.10

Change Log

* Tue Mar 3 2026 Tom\u0161 Hrn\u010diar - 3.10.20-1 - Update to 3.10.20

References


[ 1 ] Bug #2413054 - CVE-2025-6075 python3.10: Quadratic complexity in os.path.expandvars() with user-controlled template [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2413054 [ 2 ] Bug #2421633 - CVE-2025-12084 python3.10: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2421633 [ 3 ] Bug #2428941 - CVE-2025-13836 python3.10: Excessive read buffering DoS in http.client [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2428941 [ 4 ] Bug #2431811 - CVE-2025-11468 python3.10: Missing character filtering in Python [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2431811 [ 5 ] Bug #2431820 - CVE-2026-0672 python3.10: Header injection in http.cookies.Morsel in Python [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2431820 [ 6 ] Bug #2431841 - CVE-2025-15282 python3.10: Header injection via newlines in data URL mediatype in P...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-41f576f846' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: python3.10
Product: Fedora 43
Version: 3.10.20
Release: 1.fc43
URL: https://www.python.org/
Summary: Version 3.10 of the Python interpreter

Topics%20covered

Topics Covered

security advisory denial of service fedora important CVE identifier python3.10

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here