langchain-openai==1.1.9
Summary
LangChain's OpenAI integration released version 1.1.9, which fixes a bug where URLs in images weren't being properly cleaned up when the system counted how many tokens (units of text that an AI processes) were being used. The update also adds better error handling for when a prompt (input text to an AI) becomes too long to process.
Solution / Mitigation
Update to langchain-openai version 1.1.9 or later. The fix for URL sanitization when counting image tokens is included in this release.
Classification
Affected Vendors
Related Issues
CVE-2024-27444: langchain_experimental (aka LangChain Experimental) in LangChain before 0.1.8 allows an attacker to bypass the CVE-2023-
CVE-2025-45150: Insecure permissions in LangChain-ChatGLM-Webui commit ef829 allows attackers to arbitrarily view and download sensitive
Original source: https://github.com/langchain-ai/langchain/releases/tag/langchain-openai%3D%3D1.1.9
First tracked: February 15, 2026 at 07:00 AM
Classified by LLM (prompt v3) · confidence: 75%