[CLSA-2026:1767800092] python2: Fix of CVE-2025-0938
Type:
security
Severity:
Moderate
Release date:
2026-01-07 15:34:55 UTC
Description:
- CVE-2025-0938: disallow square brackets in domain names for parsed URLs to prevent differential URL parsing
Updated packages:
  • python2-2.7.18-17.module_el8+2327+18e1493b.tuxcare.els4.x86_64.rpm
    sha:5ce2be6dbfa98bb59d769014cfdc6f22659de046e3f0d7ea10bd9b6e2e7f21e2
  • python2-debug-2.7.18-17.module_el8+2327+18e1493b.tuxcare.els4.x86_64.rpm
    sha:362709d4856d1012db7cec1b3ecb8933fd01c73f837bdd76afb43117cc332739
  • python2-devel-2.7.18-17.module_el8+2327+18e1493b.tuxcare.els4.x86_64.rpm
    sha:0f71e22d4bbc92c615e5197de8e4d398fe29fc9da9d5c524ebe7fa915d36f349
  • python2-libs-2.7.18-17.module_el8+2327+18e1493b.tuxcare.els4.x86_64.rpm
    sha:ffd69a418224fe699bee676ce2ec24cd97a82e1e83551e702f26d69a5c13a1c2
  • python2-test-2.7.18-17.module_el8+2327+18e1493b.tuxcare.els4.x86_64.rpm
    sha:d4e7c3ae88c98430ed9ede254c6b02870b78e82d17e0472f19ac899265feab9e
  • python2-tkinter-2.7.18-17.module_el8+2327+18e1493b.tuxcare.els4.x86_64.rpm
    sha:cbea6a1d79bec2d7a8532bb3800bb0d103e53e541e7c318e4518112cf887ebee
  • python2-tools-2.7.18-17.module_el8+2327+18e1493b.tuxcare.els4.x86_64.rpm
    sha:a9e6dd78580dc87a0ac2ad64bca047d3c7ccc8688b6d01f8d672d6a6fa379509
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.