{"id":"OESA-2026-1018","summary":"python-tornado security update","details":"Tornado is an open source version of the scalable, non-blocking web server and tools.\r\n\r\nSecurity Fix(es):\n\nTornado is a Python web framework and asynchronous networking library. Versions 6.5.2 and below use an inefficient algorithm when parsing parameters for HTTP header values, potentially causing a DoS. The _parseparam function in httputil.py is used to parse specific HTTP header values, such as those in multipart/form-data and repeatedly calls string.count() within a nested loop while processing quoted semicolons. If an attacker sends a request with a large number of maliciously crafted parameters in a Content-Disposition header, the server's CPU usage increases quadratically (O(n²)) during parsing. Due to Tornado's single event loop architecture, a single malicious request can cause the entire server to become unresponsive for an extended period. This issue is fixed in version 6.5.3.(CVE-2025-67726)","modified":"2026-03-11T07:14:44.013860Z","published":"2026-01-09T14:05:52Z","upstream":["CVE-2025-67726"],"database_specific":{"severity":"High"},"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-1018"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-67726"}],"affected":[{"package":{"name":"python-tornado","ecosystem":"openEuler:24.03-LTS-SP3","purl":"pkg:rpm/openEuler/python-tornado&distro=openEuler-24.03-LTS-SP3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.5-2.oe2403sp3"}]}],"ecosystem_specific":{"aarch64":["python-tornado-debuginfo-6.5-2.oe2403sp3.aarch64.rpm","python-tornado-debugsource-6.5-2.oe2403sp3.aarch64.rpm","python-tornado-help-6.5-2.oe2403sp3.aarch64.rpm","python3-tornado-6.5-2.oe2403sp3.aarch64.rpm"],"x86_64":["python-tornado-debuginfo-6.5-2.oe2403sp3.x86_64.rpm","python-tornado-debugsource-6.5-2.oe2403sp3.x86_64.rpm","python-tornado-help-6.5-2.oe2403sp3.x86_64.rpm","python3-tornado-6.5-2.oe2403sp3.x86_64.rpm"],"src":["python-tornado-6.5-2.oe2403sp3.src.rpm"]},"database_specific":{"source":"https://repo.openeuler.org/security/data/osv/OESA-2026-1018.json"}}],"schema_version":"1.7.5"}