Fedora 43 Python 3.11 Security Update CVE-2025-13836 DoS Vulnerability

fedora

January 25, 2026

Security fix for CVE-2025-13836 Security fix for CVE-2025-12084

Summary

Python 3.11 is an accessible, high-level, dynamically typed, interpreted

programming language, designed with an emphasis on code readability.

It includes an extensive standard library, and has a vast ecosystem of

third-party libraries.

The python3.11 package provides the "python3.11" executable: the reference

interpreter for the Python language, version 3.

The majority of its standard library is provided in the python3.11-libs package,

which should be installed automatically along with python3.11.

The remaining parts of the Python standard library are broken out into the

python3.11-tkinter and python3.11-test packages, which may need to be installed

separately.

Documentation for Python is provided in the python3.11-docs package.

Packages containing additional libraries for Python are generally named with

the "python3.11-" prefix.

Update Information:

Security fix for CVE-2025-13836 Security fix for CVE-2025-12084

Topics Covered

security advisory fedora DoS python3.11 cve-2025-12084 cve-2025-13836

Change Log

* Fri Jan 16 2026 Lumr Balhar - 3.11.14-4 - Security fix for CVE-2025-13836 * Thu Jan 8 2026 Lumr Balhar - 3.11.14-3 - Security fix for CVE-2025-12084 * Tue Jan 6 2026 Karolina Surma - 3.11.14-2 - Require at least the same expat version as used during the build time

References

[ 1 ] Bug #2421636 - CVE-2025-12084 python3.11: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2421636 [ 2 ] Bug #2428942 - CVE-2025-13836 python3.11: Excessive read buffering DoS in http.client [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2428942

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-36e1e6958c' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity

critical

Lowest

Low

Medium

High

Critical

Name: python3.11

Product: Fedora 43

Version: 3.11.14

Release: 4.fc43

URL: https://www.python.org/

Summary: Version 3.11 of the Python interpreter

Topics Covered

security advisory fedora DoS python3.11 cve-2025-12084 cve-2025-13836

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 43 Python 3.11 Security Update CVE-2025-13836 DoS Vulnerability

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 43 Python 3.11 Security Update CVE-2025-13836 DoS Vulnerability

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!