Release date:
2025-12-30 10:15:29 UTC
Description:
* SECURITY UPDATE: Bypass of domain e-mail-based protection mechanism by
incorrect parsing of e-mail addresses that contain a special character
- debian/patches/CVE-2023-27043.patch: reject malformed addresses in
email.parseaddr()
- CVE-2023-27043
* SECURITY UPDATE: Bypass of the TLS handshake and included protections
- debian/patches/CVE-2023-40217.patch: check for & avoid the ssl
pre-close flaw
- CVE-2023-40217
Updated packages:
-
alt-python37_3.7.17-7_amd64.deb
sha:ed806e3f99e0b41deafde7814a4cc07e2a9f4b25
-
alt-python37-debug_3.7.17-7_amd64.deb
sha:204008065f41ca92971612e62b0dc407116bfeda
-
alt-python37-devel_3.7.17-7_amd64.deb
sha:46dc7a4d67b7bed8372bf0a35597f669e2069c06
-
alt-python37-libs_3.7.17-7_amd64.deb
sha:5a56fc133364dee0f1e4f8a77b959f3714de2ebd
-
alt-python37-test_3.7.17-7_amd64.deb
sha:f9cb2758e48097a32fec84560e81f645872940e7
-
alt-python37-tkinter_3.7.17-7_amd64.deb
sha:b13849e312a4bec734c6504868a8dfc503d1a620
-
alt-python37-tools_3.7.17-7_amd64.deb
sha:4fc59c609b08a45f2fff0f8c67f478642e34c1a8
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
