[CLSA-2024:1727289133] python3: Fix of 2 CVEs
Type:
security
Severity:
Important
Release date:
2024-09-25 18:32:18 UTC
Description:
- CVE-2024-6232: remove backtracking when parsing tarfile headers - CVE-2024-7592: fix quadratic complexity in parsing "-quoted cookie values with backslashes
Updated packages:
  • python3-3.6.8-21.el7_9.tuxcare.els4.i686.rpm
    sha:bc2e4502e1fabf66232ff0f43f1151788d90e14c448d6c1ca284a7d0db11203b
  • python3-3.6.8-21.el7_9.tuxcare.els4.x86_64.rpm
    sha:018928f7ecf11b7758489cf664b022dd2b8261c9bd48560d332b8743cdee54d4
  • python3-debug-3.6.8-21.el7_9.tuxcare.els4.i686.rpm
    sha:4359722a03158295398fed6b755812ca88507a034003c895c3ad2bf90c0b1070
  • python3-debug-3.6.8-21.el7_9.tuxcare.els4.x86_64.rpm
    sha:10bbd5639e9bb81b98f10c36039f9ad1d3e96f939ebe53b6eaaa738d396a5bb3
  • python3-devel-3.6.8-21.el7_9.tuxcare.els4.i686.rpm
    sha:5a2032eac3c5367015c63a6017245cdb0cf43ba00a726ce2cbc1cc049ea5b8d2
  • python3-devel-3.6.8-21.el7_9.tuxcare.els4.x86_64.rpm
    sha:5fdef25a3109a005fa60e4e8e34d1e1fc7838b68b53934445eabb57d74616f71
  • python3-idle-3.6.8-21.el7_9.tuxcare.els4.i686.rpm
    sha:b8b082040eda32e39efe352458ef6f375429ebc533d78a3a7f835d1d3371be71
  • python3-idle-3.6.8-21.el7_9.tuxcare.els4.x86_64.rpm
    sha:eacf88a4509dd5c65be6f9b54746b3e8f6d22557d9b80cdb78c521d207d11145
  • python3-libs-3.6.8-21.el7_9.tuxcare.els4.i686.rpm
    sha:bd6d0fd326e16db6145fcfa8abd73c9d2183b90506a230c929e85668236fd354
  • python3-libs-3.6.8-21.el7_9.tuxcare.els4.x86_64.rpm
    sha:3bfb8d3df2d5b13a921cd102f614a0c5fc540a57c133d58bbaa20557c8e4c0ac
  • python3-test-3.6.8-21.el7_9.tuxcare.els4.i686.rpm
    sha:f801d80020c7a340a27c943822ec341ea65a0b65c15b3c6267dbe2dea8b36965
  • python3-test-3.6.8-21.el7_9.tuxcare.els4.x86_64.rpm
    sha:7cfb03fc4ee2b473f1d5d01aed96122ce247938d9ed6141c35686bd3e69b30f2
  • python3-tkinter-3.6.8-21.el7_9.tuxcare.els4.i686.rpm
    sha:9ad11a66ba70d403360cbee149f2128290581761d2529cd030d9b762eb061283
  • python3-tkinter-3.6.8-21.el7_9.tuxcare.els4.x86_64.rpm
    sha:294e8ea7c05e97e60c59f0dbf4cf35a3e349d91da787db72cfb24fc72621d903
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.