Release date:
2026-01-16 13:40:34 UTC
Description:
* SECURITY UPDATE: Quadratic complexity in xml.minidom node ID cache
clearing
- debian/patches/CVE-2025-12084.patch: remove quadratic behavior in
xml.minidom node ID cache clearing
- CVE-2025-12084
* SECURITY UPDATE: Overwriting of arbitrary files by remote attackers
- debian/patches/CVE-2007-4559.patch: implement PEP 706 - a filter in
the tarfile module to prevent directory traversal vulnerability
- CVE-2007-4559
Updated packages:
-
alt-python37_3.7.17-8_amd64.deb
sha:ded969ab125c0d843a9b09aacc806278065f0d31
-
alt-python37-debug_3.7.17-8_amd64.deb
sha:ffbf1308bd59024008bb23a68b7505af4dacd5d9
-
alt-python37-devel_3.7.17-8_amd64.deb
sha:618ee97a2cb6e6d94b3caed5678538b529a4358f
-
alt-python37-libs_3.7.17-8_amd64.deb
sha:3d652f7ae1d59b6d9c066fe7d02661c9098ff5d9
-
alt-python37-test_3.7.17-8_amd64.deb
sha:9d23c7aa4be3e70e78c605343d46369d28225e1d
-
alt-python37-tkinter_3.7.17-8_amd64.deb
sha:7f38314e7f85fe0341c8a19f29106f771b3a51ae
-
alt-python37-tools_3.7.17-8_amd64.deb
sha:0812d602724757fce01ba0f20bddd25e61db2f47
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
