CVE-2025-13836: debian package libpython3.13-stdlib-3.13.5-2

[github-actions]

Title

cpython: Excessive read buffering DoS in http.client

Description

When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.

Severity

HIGH

Fixed in Version

No known fix at this time

Primary URL

https://avd.aquasec.com/nvd/cve-2025-13836

Additional Information

Vulnerability ID: CVE-2025-13836}
Package Name: libpython3.13-stdlib
Package Version: 3.13.5-2

References

• https://access.redhat.com/errata/RHSA-2026:1410
• https://access.redhat.com/security/cve/CVE-2025-13836
• https://bugzilla.redhat.com/2418078
• https://bugzilla.redhat.com/2418655
• https://bugzilla.redhat.com/show_bug.cgi?id=2418078
• https://bugzilla.redhat.com/show_bug.cgi?id=2418655
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12084
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13836
• https://errata.almalinux.org/9/ALSA-2026-1410.html
• https://errata.rockylinux.org/RLSA-2026:1410
• python/cpython@14b1fdb
• python/cpython@289f29b
• python/cpython@4ce2790
• python/cpython@4ce2790 (3.14 branch)
• python/cpython@5a4c4a0
• python/cpython@5a4c4a0 (main)
• python/cpython@5dc1016
• python/cpython@afc40bd
• Out-of-memory when reading a HTTP response with large Content-Length python/cpython#119451
• gh-119451: Fix a potential denial of service in http.client python/cpython#119454
• https://linux.oracle.com/cve/CVE-2025-13836.html
• https://linux.oracle.com/errata/ELSA-2026-2419.html
• https://mail.python.org/archives/list/security-announce@python.org/thread/OQ6G7MKRQIS3OAREC3HNG3D2DPOU34XO/
• https://nvd.nist.gov/vuln/detail/CVE-2025-13836
• https://ubuntu.com/security/notices/USN-7951-1
• https://www.cve.org/CVERecord?id=CVE-2025-13836