When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.

When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.

Excessive read buffering DoS in http.client

When reading an HTTP response from a server, if no read amount is spec ...

When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.

Moderate: python3.11 security update

Moderate: python3.12 security update

Moderate: python3.11 security update

ELSA-2026-1410: python3.11 security update (MODERATE)

ELSA-2026-1408: python3.12 security update (MODERATE)

ELSA-2026-1374: python3.11 security update (MODERATE)

Security update for python311

Security update for python311

Security update for python

Security update for python

Security update for python310

Security update for python3

Security update for python312

Security update for python313

Security update for python39