Release date:
2026-01-16 13:44:17 UTC
Description:
* SECURITY UPDATE: Quadratic complexity in xml.minidom node ID cache
clearing
- debian/patches/CVE-2025-12084.patch: remove quadratic behavior in
xml.minidom node ID cache clearing
- CVE-2025-12084
* SECURITY UPDATE: Overwriting of arbitrary files by remote attackers
- debian/patches/CVE-2007-4559.patch: implement PEP 706 - a filter in
the tarfile module to prevent directory traversal vulnerability
- CVE-2007-4559
Updated packages:
-
alt-python37_3.7.17-8_amd64.deb
sha:4dc6d1e89e2b4f39e45f028eb6e01b940a657299
-
alt-python37-debug_3.7.17-8_amd64.deb
sha:55cd15b36f510f84565d46aded96dbe992032a1b
-
alt-python37-devel_3.7.17-8_amd64.deb
sha:08666d7e39eb00183906a67865c919980b95483f
-
alt-python37-libs_3.7.17-8_amd64.deb
sha:7c8d3a9dcbb7c8a00deac0aa0bd84fbd39e31ab4
-
alt-python37-test_3.7.17-8_amd64.deb
sha:a8f9adcf848b6b19feeccf5cc314a67abb93e4d5
-
alt-python37-tkinter_3.7.17-8_amd64.deb
sha:2bda01e7b7957bda5ec4cfbc1b3a293b98186d6e
-
alt-python37-tools_3.7.17-8_amd64.deb
sha:4e578dc9e4221660714f156d7bd3717327cde99c
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
