CVE-2025-13836

Excessive read buffering DoS in http.client

Published: 12/1/2025 Last updated: 12/22/2025 Reserved: 12/1/2025

When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.

CNA assigner: PSF (28c92f92-d60d-412d-b760-e73465c3df22) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
4.0	6.3	Medium	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

Opam packages affected (7)

conf-python-2-7 conf-python-2-7-dev conf-python-3 conf-python-3-7 conf-python-3-dev py termbox

Products affected (2)

Product	Vendor	Version
CPython	Python Software Foundation	n/a
CPython	Python Software Foundation	QCM4290

References (14)

https://github.com/python/cpython/issues/119451
https://github.com/python/cpython/pull/119454
https://github.com/python/cpython/commit/4ce27904b597c77d74dd93f2c912676021a99155
https://github.com/python/cpython/commit/5a4c4a033a4a54481be6870aa1896fad732555b5
https://mail.python.org/archives/list/security-announce@python.org/thread/OQ6G7MKRQIS3OAREC3HNG3D2DPOU34XO/
https://github.com/python/cpython/commit/289f29b0fe38baf2d7cb5854f4bb573cc34a6a15
https://github.com/python/cpython/commit/14b1fdb0a94b96f86fc7b86671ea9582b8676628
https://github.com/python/cpython/issues/119451
https://github.com/python/cpython/pull/119454
https://github.com/python/cpython/commit/4ce27904b597c77d74dd93f2c912676021a99155
https://github.com/python/cpython/commit/5a4c4a033a4a54481be6870aa1896fad732555b5
https://mail.python.org/archives/list/security-announce@python.org/thread/OQ6G7MKRQIS3OAREC3HNG3D2DPOU34XO/
https://github.com/python/cpython/commit/289f29b0fe38baf2d7cb5854f4bb573cc34a6a15
https://github.com/python/cpython/commit/14b1fdb0a94b96f86fc7b86671ea9582b8676628