Release date:
2026-03-05 12:01:38 UTC
Description:
* SECURITY UPDATE: defect in 'tarfile' module leads to infinite loop and
deadlock in parsing of maliciously crafted tar archives
- debian/patches/CVE-2025-8194.patch: Validate archives to ensure member
offsets are non-negative
- CVE-2025-8194
Updated packages:
-
alt-python27_2.7.18-11_amd64.deb
sha:f26df72bcb6f301b07de183ccaf598c74c182971
-
alt-python27-debug_2.7.18-11_amd64.deb
sha:4589dbfc034fd5ffc2864f0213fe228658b81a71
-
alt-python27-devel_2.7.18-11_amd64.deb
sha:d315584ecc03665c1b257889edefbb81909217da
-
alt-python27-idle_2.7.18-11_amd64.deb
sha:28a639ef2e1e1be859051a1b2436a47e2096f402
-
alt-python27-libs_2.7.18-11_amd64.deb
sha:8173d6226760f681ababa5dfaaa1e3e21b8fb31a
-
alt-python27-test_2.7.18-11_amd64.deb
sha:43f34f4e3c4d5dbc2ebc9dfa478a806742dc8d9b
-
alt-python27-tkinter_2.7.18-11_amd64.deb
sha:bbca903be7d65d7752c2a4e913846dbe10fe1bfa
-
alt-python27-tools_2.7.18-11_amd64.deb
sha:7fddebe64a29a916644b0cbe84d35f4bf73e1450
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
