Release date:
2026-03-05 11:42:35 UTC
Description:
* SECURITY UPDATE: defect in 'tarfile' module leads to infinite loop and
deadlock in parsing of maliciously crafted tar archives
- debian/patches/CVE-2025-8194.patch: Validate archives to ensure member
offsets are non-negative
- CVE-2025-8194
Updated packages:
-
alt-python27_2.7.18-11_amd64.deb
sha:a58e18602b5315658e22f008f00dbc0d0c7dfd52
-
alt-python27-debug_2.7.18-11_amd64.deb
sha:ef90617708f147efdc361a9d0e5e5b5d4a869ff3
-
alt-python27-devel_2.7.18-11_amd64.deb
sha:afaf0db1ad0d2a044de116d8a98bc092c376ba67
-
alt-python27-idle_2.7.18-11_amd64.deb
sha:dfbfeb9d7ee93426ae6ce0ddfe0b6e1ef36e3199
-
alt-python27-libs_2.7.18-11_amd64.deb
sha:1cca1a37282b4caf23358ce307fc598ce94f5906
-
alt-python27-test_2.7.18-11_amd64.deb
sha:a98e9ddf148a971a239bf079bb9fbb9591a7b7f6
-
alt-python27-tkinter_2.7.18-11_amd64.deb
sha:5518b02bb04dcdb170c0c1b90538227cc3962e0c
-
alt-python27-tools_2.7.18-11_amd64.deb
sha:88d794b552fb7d8cb8d6aec16930616fe3622f95
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
