Release date:
2026-03-05 11:45:36 UTC
Description:
* SECURITY UPDATE: defect in 'tarfile' module leads to infinite loop and
deadlock in parsing of maliciously crafted tar archives
- debian/patches/CVE-2025-8194.patch: Validate archives to ensure member
offsets are non-negative
- CVE-2025-8194
Updated packages:
-
alt-python27_2.7.18-11_amd64.deb
sha:a9d2b9b7825b670a44d3153b88e5ce102ffc8369
-
alt-python27-debug_2.7.18-11_amd64.deb
sha:6ae5fb1c009d489f41c1aa7a8a76a4fca4e5dce2
-
alt-python27-devel_2.7.18-11_amd64.deb
sha:a09ce738ef7d12696650602daa8a84f66fcd997f
-
alt-python27-idle_2.7.18-11_amd64.deb
sha:dfbfeb9d7ee93426ae6ce0ddfe0b6e1ef36e3199
-
alt-python27-libs_2.7.18-11_amd64.deb
sha:ee7f76b1712c8b6688fd86f6fec0ac11184ef255
-
alt-python27-test_2.7.18-11_amd64.deb
sha:11ec09377f9aaa53f1e60c2ef8013d501065884f
-
alt-python27-tkinter_2.7.18-11_amd64.deb
sha:7a5fda4735263e54027b35a11868cc68a293a8aa
-
alt-python27-tools_2.7.18-11_amd64.deb
sha:88d794b552fb7d8cb8d6aec16930616fe3622f95
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
