Multiple CVEs Addressed in Python HTTP Header Injection Vulnerabilities

Multiple CVEs Addressed in Python HTTP Header Injection Vulnerabilities

First seen 25 Feb 2026, 04:09 UTC Linuxsecurity 94% similarity 21.8

Article Content

Browse articles
ThreatCluster

SUSE has released updates for Python 3.6 and 3.10 to address several critical HTTP header injection vulnerabilities. The affected CVEs include CVE-2025-11468, CVE-2026-0672, CVE-2026-0865, and CVE-2025-15366, all published on January 20, 2026. Users of SUSE Linux Enterprise Server and openSUSE are advised to apply these updates to mitigate potential exploitation risks.

ThreatCluster AI

Timeline

2026-01-20
CVE-2025-11468 published
2026-01-20
CVE-2026-0672 published
2026-01-20
CVE-2026-0865 published
2026-01-20
CVE-2025-15366 published
2026-01-20
CVE-2025-15282 published
2026-01-20
CVE-2025-15367 published
2026-02-24
Updates released for Python 3.6 and 3.10

Community

Browse all →