Release date:
2026-03-05 11:58:36 UTC
Description:
* SECURITY UPDATE: defect in 'tarfile' module leads to infinite loop and
deadlock in parsing of maliciously crafted tar archives
- debian/patches/CVE-2025-8194.patch: Validate archives to ensure member
offsets are non-negative
- CVE-2025-8194
Updated packages:
-
alt-python27_2.7.18-11_amd64.deb
sha:01f1e6b1eb1b3877d35ee024861fc662deb0feeb
-
alt-python27-debug_2.7.18-11_amd64.deb
sha:9b9bf1f9443b7b64af1f1613c56f53a7554e22f7
-
alt-python27-devel_2.7.18-11_amd64.deb
sha:c1bebfc47070bc381db3d9fb7afd5854410f3a12
-
alt-python27-idle_2.7.18-11_amd64.deb
sha:6206f79dcfcc7ad1fbd3fa187919d3efa7a0904a
-
alt-python27-libs_2.7.18-11_amd64.deb
sha:777d00ef86b472857e7a2de664a5f8f1923f0569
-
alt-python27-test_2.7.18-11_amd64.deb
sha:abb6e30cd7041d427b29e212562f13f716fa581e
-
alt-python27-tkinter_2.7.18-11_amd64.deb
sha:55c3977de7295089fd97d0b454f4fb28989f7cbc
-
alt-python27-tools_2.7.18-11_amd64.deb
sha:37e0fe045abf3d6d3f0d5431a4060f3dd43522cc
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
