Описание
ELSA-2025-1750: python3 security update (MODERATE)
[3.6.8-21.0.3]
- Fix DoS parsing crafted tarfile headers [Orabug: 37626372][CVE-2024-6232]
- Disable test_socket in the PGO profile task.
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
python3
3.6.8-21.0.3.el7_9
python3-debug
3.6.8-21.0.3.el7_9
python3-devel
3.6.8-21.0.3.el7_9
python3-idle
3.6.8-21.0.3.el7_9
python3-libs
3.6.8-21.0.3.el7_9
python3-test
3.6.8-21.0.3.el7_9
python3-tkinter
3.6.8-21.0.3.el7_9
Связанные CVE
Связанные уязвимости
There is a MEDIUM severity vulnerability affecting CPython. Regular expressions that allowed excessive backtracking during tarfile.TarFile header parsing are vulnerable to ReDoS via specifically-crafted tar archives.
There is a MEDIUM severity vulnerability affecting CPython. Regular expressions that allowed excessive backtracking during tarfile.TarFile header parsing are vulnerable to ReDoS via specifically-crafted tar archives.
There is a MEDIUM severity vulnerability affecting CPython. Regular expressions that allowed excessive backtracking during tarfile.TarFile header parsing are vulnerable to ReDoS via specifically-crafted tar archives.
There is a MEDIUM severity vulnerability affecting CPython. Regul ...