Release date:
2026-03-03 16:39:54 UTC
Description:
* SECURITY UPDATE: defect in 'tarfile' module leads to infinite loop and
deadlock in parsing of maliciously crafted tar archives
- debian/patches/CVE-2025-8194.patch: Validate archives to ensure member
offsets are non-negative
- CVE-2025-8194
Updated packages:
-
alt-python36_3.6.15-28_amd64.deb
sha:a9efc2f61e825193ccfba5233ebf970686bbc6e6
-
alt-python36-debug_3.6.15-28_amd64.deb
sha:1bc0b9221401aa6ff9594312d9ec2d56f136bc38
-
alt-python36-devel_3.6.15-28_amd64.deb
sha:30380c6c3dd261c1edecc978b907d5eb791c9ff6
-
alt-python36-libs_3.6.15-28_amd64.deb
sha:6275fc72e6fae0cf42a5be8e082e24854a30f8ca
-
alt-python36-test_3.6.15-28_amd64.deb
sha:3833dba6adbee876c4710554fe513f8c6fa4425e
-
alt-python36-tkinter_3.6.15-28_amd64.deb
sha:c5af5115394a3cfd600e58ac6cc68a258da93c5a
-
alt-python36-tools_3.6.15-28_amd64.deb
sha:28bbdc94408ff185d6ced8a4a709eb64c27ab4c9
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
