Release date:
2026-03-03 16:47:13 UTC
Description:
* SECURITY UPDATE: defect in 'tarfile' module leads to infinite loop and
deadlock in parsing of maliciously crafted tar archives
- debian/patches/CVE-2025-8194.patch: Validate archives to ensure member
offsets are non-negative
- CVE-2025-8194
Updated packages:
-
alt-python36_3.6.15-28_amd64.deb
sha:3ed1feb8a181b99a23c1b6d7e55179c284b56567
-
alt-python36-debug_3.6.15-28_amd64.deb
sha:ac01e1fa3a590b25412d51714f5fb848c99a406d
-
alt-python36-devel_3.6.15-28_amd64.deb
sha:d18371a1b3c64f98f3f3e865a21a8a7a4802906e
-
alt-python36-libs_3.6.15-28_amd64.deb
sha:aee3a8bb0ff6c0d86ee9767b47252109ca0287a7
-
alt-python36-test_3.6.15-28_amd64.deb
sha:a35279f83e02eb64eaed25e8edeb2219d212c1fc
-
alt-python36-tkinter_3.6.15-28_amd64.deb
sha:48d795bb91867d6d34404feac7800ed3c8369daf
-
alt-python36-tools_3.6.15-28_amd64.deb
sha:2be539228249d0c678954b9d99e8e62522eb00a4
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
