Release date:
2026-03-05 11:48:48 UTC
Description:
* SECURITY UPDATE: defect in 'tarfile' module leads to infinite loop and
deadlock in parsing of maliciously crafted tar archives
- debian/patches/CVE-2025-8194.patch: Validate archives to ensure member
offsets are non-negative
- CVE-2025-8194
Updated packages:
-
alt-python27_2.7.18-11_amd64.deb
sha:658be67966ef43360dc2983ef054b6292cc8d5a8
-
alt-python27-debug_2.7.18-11_amd64.deb
sha:9afb6385686b356300dc6f8c5dccf47bfaa635fe
-
alt-python27-devel_2.7.18-11_amd64.deb
sha:1b56c6a35d2418f432a4333575a3b6ef0b176635
-
alt-python27-idle_2.7.18-11_amd64.deb
sha:dfbfeb9d7ee93426ae6ce0ddfe0b6e1ef36e3199
-
alt-python27-libs_2.7.18-11_amd64.deb
sha:91ae43f3153f09ea65b9e0b167e0bc7a2463b97f
-
alt-python27-test_2.7.18-11_amd64.deb
sha:a7d392a7ec490ad0a9268224c35141455051975e
-
alt-python27-tkinter_2.7.18-11_amd64.deb
sha:be62cf7839069a3095cf9c3059961f89cacf00b8
-
alt-python27-tools_2.7.18-11_amd64.deb
sha:88d794b552fb7d8cb8d6aec16930616fe3622f95
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
