ALSA-2026:2042

[ALSA-2026:2042] Important: brotli security update

Type:

security

Severity:

important

Release date:

2026-02-05

Description:

Brotli is a generic-purpose lossless compression algorithm that compresses data using a combination of a modern variant of the LZ77 algorithm, Huffman coding and 2nd order context modeling, with a compression ratio comparable to the best currently available general-purpose compression methods. It is similar in speed with deflate but offers more dense compression.   

Security Fix(es):  

  * Scrapy: python-scrapy: brotli: Python brotli decompression bomb DoS (CVE-2025-6176)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	brotli-devel-1.0.9-9.el9_7.aarch64.rpm	1106a8bd5ab7bd55e060bb7398f874838074212074861a62a4845aa197af0fd9
aarch64	brotli-1.0.9-9.el9_7.aarch64.rpm	53ad4b463d620a55ac726f6702b29b4d54e2fdbfbc4bef42d6c455cd69b788ad
aarch64	python3-brotli-1.0.9-9.el9_7.aarch64.rpm	89d6b63d61042395b8f52fbabecf5293f374813039cf0bd15fdaba3adac98762
aarch64	libbrotli-1.0.9-9.el9_7.aarch64.rpm	a45ab215577b6135a84950aae6f9721ba5fccf87de72b08aa551b50272b71dc7
i686	brotli-devel-1.0.9-9.el9_7.i686.rpm	3cb44ff622ec88b08c4daf422f7a367c70deb309c648b01bc3bb95cde6a98caa
i686	libbrotli-1.0.9-9.el9_7.i686.rpm	9b81a6e8876a3bd59028563b52e95601641555839be8b5247efd0f9749a0ad78
i686	brotli-1.0.9-9.el9_7.i686.rpm	e93a982eaf6f853bdf4f2829318b9a14df38b998dd8d67d0a902c6debfd785db
ppc64le	brotli-1.0.9-9.el9_7.ppc64le.rpm	2b4e600072f3ead390d04ce4e52785052d3ea7c8d0c2f6e26a9146d94b6ca0fa
ppc64le	python3-brotli-1.0.9-9.el9_7.ppc64le.rpm	43948a7cca2667d264619ac5169d446273a95614a4edc9b3d228c64c1b3c2363
ppc64le	brotli-devel-1.0.9-9.el9_7.ppc64le.rpm	65e453a9c0edb639c1948dc61988945048b60139ec07d1cc413105b3274e0e71
ppc64le	libbrotli-1.0.9-9.el9_7.ppc64le.rpm	90e2b9d4ea1ad7eb5f7bcf20a146a790b99a1a2c80f7015899d8ce3256c2a637
s390x	libbrotli-1.0.9-9.el9_7.s390x.rpm	005e294b6e5532a90187e61b2cc2496bab8d79575f655c5c5446bde1e98dd0d9
s390x	brotli-devel-1.0.9-9.el9_7.s390x.rpm	69eba75395589d53968e4afc122ed443175b825201d3a01dcb9f50eb68e27fef
s390x	python3-brotli-1.0.9-9.el9_7.s390x.rpm	af203063c7442473e84da2c1e530ab6e9de4d5ef27a5e4504e408687f95499a9
s390x	brotli-1.0.9-9.el9_7.s390x.rpm	c273a36291fd25e3b65d57959618551ea00f2a3ecadc79705114e8a51eac04ec
x86_64	libbrotli-1.0.9-9.el9_7.x86_64.rpm	3d24c430a1edb4d196bbec70cd59e3580421f91c8ad0c25451b9cc7130cfe66a
x86_64	python3-brotli-1.0.9-9.el9_7.x86_64.rpm	5bc186448113e82c3dfcdde4670fc7f44b7c3a391093242c8c7b5ff110f064d2
x86_64	brotli-devel-1.0.9-9.el9_7.x86_64.rpm	7931809458a64e3df2ff19cd0e5fa6636a8cdcb12feedb48238483aca33fb60b
x86_64	brotli-1.0.9-9.el9_7.x86_64.rpm	a42d7c62647aeac7c1989384c403a9ea4728d845071de4e0eae68d01ef48a3c6

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.