Release date:
2026-03-05 11:55:37 UTC
Description:
* SECURITY UPDATE: defect in 'tarfile' module leads to infinite loop and
deadlock in parsing of maliciously crafted tar archives
- debian/patches/CVE-2025-8194.patch: Validate archives to ensure member
offsets are non-negative
- CVE-2025-8194
Updated packages:
-
alt-python27_2.7.18-11_amd64.deb
sha:48b953b6b2a563b2af00fe7859f04d1aa9342e51
-
alt-python27-debug_2.7.18-11_amd64.deb
sha:4af3e00d2fc93dad632215c51527786a24fda98a
-
alt-python27-devel_2.7.18-11_amd64.deb
sha:bbdfa2992079e296563a4805588290c8ee1e9b35
-
alt-python27-idle_2.7.18-11_amd64.deb
sha:6206f79dcfcc7ad1fbd3fa187919d3efa7a0904a
-
alt-python27-libs_2.7.18-11_amd64.deb
sha:8fde00246284673941a8d073ce1f8ef3f72d3596
-
alt-python27-test_2.7.18-11_amd64.deb
sha:cb00409f16b26c17c94d3b872b76694ccd53466c
-
alt-python27-tkinter_2.7.18-11_amd64.deb
sha:f0bc9d7b9481973ce8e085ebe18ad9ccd14fc672
-
alt-python27-tools_2.7.18-11_amd64.deb
sha:37e0fe045abf3d6d3f0d5431a4060f3dd43522cc
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
