Release date:
2026-03-05 12:04:44 UTC
Description:
* SECURITY UPDATE: defect in 'tarfile' module leads to infinite loop and
deadlock in parsing of maliciously crafted tar archives
- debian/patches/CVE-2025-8194.patch: Validate archives to ensure member
offsets are non-negative
- CVE-2025-8194
Updated packages:
-
alt-python27_2.7.18-11_amd64.deb
sha:394972551ecc204637807af28c77765b12cc9230
-
alt-python27-debug_2.7.18-11_amd64.deb
sha:79c3d12f6fbfb4b3a99057661aa1332797383ecf
-
alt-python27-devel_2.7.18-11_amd64.deb
sha:5691303e1abb45b8eab2dd2bded277008303b9b9
-
alt-python27-idle_2.7.18-11_amd64.deb
sha:c5134604f021aee22d126bec41a8c2d029db78ec
-
alt-python27-libs_2.7.18-11_amd64.deb
sha:83b3ac0de90b9ea45b28151b74ff1da005568dc8
-
alt-python27-test_2.7.18-11_amd64.deb
sha:9b9dc3c3b8394f04bdb035a8f9d4d82b646bc116
-
alt-python27-tkinter_2.7.18-11_amd64.deb
sha:8cd5a8a98cbaf44ddaf07d6a26ff591c6773c1eb
-
alt-python27-tools_2.7.18-11_amd64.deb
sha:8bbfb0e099bfe030bdef3118462bd468ad428274
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
