Release date:
2026-03-11 09:32:36 UTC
Description:
* SECURITY UPDATE: quadratic complexity in xml.dom.minidom node ID cache
clearing leads to denial of service
- debian/patches/CVE-2025-12084.patch: Replace quadratic _in_document()
traversal with ownerDocument attribute check in _clear_id_cache(); ensure
Element and Attr instances have ownerDocument attribute.
- CVE-2025-12084
Updated packages:
-
idle-python3.6_3.6.9-1~18.04ubuntu1.12+tuxcare.els20_all.deb
sha:b072564d4af2dd12981ffbbc2216e7cf0055888c
-
libpython3.6_3.6.9-1~18.04ubuntu1.12+tuxcare.els20_amd64.deb
sha:8d740e07946082b28fd0517c8ca087caf3b469f1
-
libpython3.6-dev_3.6.9-1~18.04ubuntu1.12+tuxcare.els20_amd64.deb
sha:613a28d77f74b2cecce6a42373ee8ab3bd2abf8f
-
libpython3.6-minimal_3.6.9-1~18.04ubuntu1.12+tuxcare.els20_amd64.deb
sha:2d8dbc40f853df8e8be7e180e5d3a2122bf408d1
-
libpython3.6-stdlib_3.6.9-1~18.04ubuntu1.12+tuxcare.els20_amd64.deb
sha:da769d74bfef839c10cfe6346eb1d428dd419593
-
libpython3.6-testsuite_3.6.9-1~18.04ubuntu1.12+tuxcare.els20_all.deb
sha:2778d2c3aae9984d0facb515b9311dbcc20ec954
-
python3.6_3.6.9-1~18.04ubuntu1.12+tuxcare.els20_amd64.deb
sha:a85579e899f7419f8dd4bdce2a0f7d3378170275
-
python3.6-dev_3.6.9-1~18.04ubuntu1.12+tuxcare.els20_amd64.deb
sha:ef89ae4d3819fe2efb80c304a2e0bd45410e6148
-
python3.6-doc_3.6.9-1~18.04ubuntu1.12+tuxcare.els20_all.deb
sha:c443b07a4282421fdbfffd777b4227745b60654b
-
python3.6-examples_3.6.9-1~18.04ubuntu1.12+tuxcare.els20_all.deb
sha:60b77bcd12411257c7c842554f9917337513cf84
-
python3.6-minimal_3.6.9-1~18.04ubuntu1.12+tuxcare.els20_amd64.deb
sha:07c43bc86d4cab4a212a7b45025ac23d4bed38bf
-
python3.6-venv_3.6.9-1~18.04ubuntu1.12+tuxcare.els20_amd64.deb
sha:e91b48319da3becaf0b1788c585347b107af38c6
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
