Release date:
2026-03-04 10:01:45 UTC
Description:
* SECURITY UPDATE: defect in 'tarfile' module leads to infinite loop and
deadlock in parsing of maliciously crafted tar archives
- debian/patches/CVE-2025-8194.patch: Validate archives to ensure member
offsets are non-negative
- CVE-2025-8194
Updated packages:
-
alt-python36_3.6.15-28_amd64.deb
sha:b51e91d66603fca8ba78c9aa0a43fc78e35fed3d
-
alt-python36-debug_3.6.15-28_amd64.deb
sha:501ce260074bc5201ebf7a4149ca8455342440ac
-
alt-python36-devel_3.6.15-28_amd64.deb
sha:ed36d68a7cf3b7342691120a30d5d8b83c429a44
-
alt-python36-libs_3.6.15-28_amd64.deb
sha:cfda0694c0d94b180eeaa671eda9242abf3e6f09
-
alt-python36-test_3.6.15-28_amd64.deb
sha:1d7705074f1211ec77831b923c5a2b9517f4f1bf
-
alt-python36-tkinter_3.6.15-28_amd64.deb
sha:90dfb377b453130a955663077f2d4dc3c554392c
-
alt-python36-tools_3.6.15-28_amd64.deb
sha:6bf40f2c1e0bd9655f46ad3268cbfee76d181fe2
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
