Release date:
2026-03-05 11:52:32 UTC
Description:
* SECURITY UPDATE: defect in 'tarfile' module leads to infinite loop and
deadlock in parsing of maliciously crafted tar archives
- debian/patches/CVE-2025-8194.patch: Validate archives to ensure member
offsets are non-negative
- CVE-2025-8194
Updated packages:
-
alt-python27_2.7.18-11_amd64.deb
sha:9f078de8e9dfa0c8dc650a4da2e986588049b1d8
-
alt-python27-debug_2.7.18-11_amd64.deb
sha:3816dc256f46779c706df49a92e8de7e38575830
-
alt-python27-devel_2.7.18-11_amd64.deb
sha:d4a74f2f07f1299eb987dd157589aa6060a5fc18
-
alt-python27-idle_2.7.18-11_amd64.deb
sha:31a0c89a0b231dfcdfaeb55a315053010aca251e
-
alt-python27-libs_2.7.18-11_amd64.deb
sha:db08937726658ef8bb1d4abe2b68605a7712f909
-
alt-python27-test_2.7.18-11_amd64.deb
sha:b7053b22eaf391385ee98346c7b43ab0539306c7
-
alt-python27-tkinter_2.7.18-11_amd64.deb
sha:24b79a857cf47ac45be99399decce949d9392ab7
-
alt-python27-tools_2.7.18-11_amd64.deb
sha:078d044f9ca482e85e2421f87c5df4680b9acbb8
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
