Release date:
2025-12-02 22:46:12 UTC
Description:
- CVE-2025-27144: fix memory exhaustion vulnerability when parsing compact JWS
or JWE input by updating the code to split JWT tokens
Updated packages:
-
osbuild-composer-76-2.el9_2.2.alma.tuxcare.els1.x86_64.rpm
sha:0f91e7b2743db7374b841f57aa096e022ba9aa66801f175199d633afc7396ff0
-
osbuild-composer-core-76-2.el9_2.2.alma.tuxcare.els1.x86_64.rpm
sha:aaf5f892ecd139269e2892024c6fb266b0c82b41f80ec78211e4dff983938c6f
-
osbuild-composer-dnf-json-76-2.el9_2.2.alma.tuxcare.els1.x86_64.rpm
sha:f9e13086ee1165aa51516678b789f7bd1a50248954934f34f9432d46daffb60f
-
osbuild-composer-tests-76-2.el9_2.2.alma.tuxcare.els1.x86_64.rpm
sha:f9c1360446fd5c3de19c5971b56aa59ec42ee616c1876ff9bc12c05ab2e394b6
-
osbuild-composer-worker-76-2.el9_2.2.alma.tuxcare.els1.x86_64.rpm
sha:71f00c194dbe2a2f72a13b4566a8e227ab912932ef729cae48463e9267628a93
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
