Fluid Attacks Database

Description

lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration (with resolve_entities=True) allows untrusted XML input to read local files. Setting the resolve_entities option explicitly to resolve_entities='internal' or resolve_entities=False disables the local file access. This vulnerability is fixed in 6.1.0.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
pypi	lxml	>=0 <6.1.0	6.1.0
debian 13	lxml	=5.4.0-1 \|\| =6.0.1-1 \|\| =6.0.2-1 \|\| =6.1.0-1	-
debian 11	lxml	=4.6.3+dfsg-0.1 \|\| =4.6.3+dfsg-0.1+deb11u1 \|\| =4.6.3+dfsg-1 \|\| =4.6.4-1 \|\| =4.7.1-1 \|\| =4.8.0-1 \|\| =4.9.1-1 \|\| =4.9.2-1 \|\| =4.9.3-1 \|\| =4.9.4-1 \|\| =5.1.0-1 \|\| =5.2.0-1 \|\| =5.2.1-1 \|\| =5.2.2-1 \|\| =5.2.2-2 \|\| =5.3.0-1 \|\| =5.3.1-1 \|\| =5.3.2-1 \|\| =5.4.0-1 \|\| =6.0.1-1 \|\| =6.0.2-1 \|\| =6.1.0-1	-
debian 12	lxml	=4.9.2-1 \|\| =4.9.3-1 \|\| =4.9.4-1 \|\| =5.1.0-1 \|\| =5.2.0-1 \|\| =5.2.1-1 \|\| =5.2.2-1 \|\| =5.2.2-2 \|\| =5.3.0-1 \|\| =5.3.1-1 \|\| =5.3.2-1 \|\| =5.4.0-1 \|\| =6.0.1-1 \|\| =6.0.2-1 \|\| =6.1.0-1	-
debian 14	lxml	=5.4.0-1 \|\| =6.0.1-1 \|\| =6.0.2-1 \|\| >=0 <6.1.0-1	6.1.0-1
rpm rhel6	python-lxml	-	-
rpm rhel9	python-lxml	-	-
rpm rhel7	python-lxml	-	-
rpm rhel10	python-lxml	-	-
rpm rhel8	python-lxml	-	-

Aliases

1. CVE-2026-410662. NVD-2026-410663. OSV-2026-410664. OSV-DEBIAN-2026-410665. GHSA-vfmq-68hx-4jfw6. GCVE-2026-410667. SECURITY-TRACKER-CVE-2026-41066

References

1. https://github.com/lxml/lxml/security/advisories/GHSA-vfmq-68hx-4jfw2. https://bugs.launchpad.net/lxml/+bug/21462913. https://github.com/lxml/lxml/releases/tag/lxml-6.1.0