Release date:
2026-03-05 11:39:56 UTC
Description:
* SECURITY UPDATE: defect in 'tarfile' module leads to infinite loop and
deadlock in parsing of maliciously crafted tar archives
- debian/patches/CVE-2025-8194.patch: Validate archives to ensure member
offsets are non-negative
- CVE-2025-8194
Updated packages:
-
alt-python27_2.7.18-11_amd64.deb
sha:55ab20f1c01ef93eb97234e2e8be52350fac7e99
-
alt-python27-debug_2.7.18-11_amd64.deb
sha:0f8f87b98a79e31eb35823a3011153624226d256
-
alt-python27-devel_2.7.18-11_amd64.deb
sha:2f6517ab9e4e293e2b889255fb646f424d88b089
-
alt-python27-idle_2.7.18-11_amd64.deb
sha:dfbfeb9d7ee93426ae6ce0ddfe0b6e1ef36e3199
-
alt-python27-libs_2.7.18-11_amd64.deb
sha:b5778b7e84eeacf8f477e30764d513d02213b3b2
-
alt-python27-test_2.7.18-11_amd64.deb
sha:b296583fa115bb764b66f2987337bc9fb6acce44
-
alt-python27-tkinter_2.7.18-11_amd64.deb
sha:9dbee2dc81b807f2edab9f893d0eb344d6ca6f92
-
alt-python27-tools_2.7.18-11_amd64.deb
sha:88d794b552fb7d8cb8d6aec16930616fe3622f95
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
