Wind River Support Network

HomeDefectsLIN1022-22155
Acknowledged

LIN1022-22155 : Security Advisory - python3-aiohttp - CVE-2026-34520

Created: Apr 2, 2026    Updated: Apr 13, 2026
Found In Version: 10.22.33.2
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Userspace

Description

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, the C parser (the default for most installs) accepted null bytes and control characters in response headers. This issue has been patched in version 3.13.4.
  • Linkedin
  • Facebook
  • Twitter
  • Youtube