Описание
ELSA-2026-2713: python3 security update (MODERATE)
[3.6.8-21.0.7]
- Security update CVE-2025-12084 [Orabug: 38971895]
[3.6.8-21.0.5]
- tarfile now validates archives to ensure member offsets are non-negative [Orabug: 38442771][CVE-2025-8194]
[3.6.8-21.0.3]
- Fix DoS parsing crafted tarfile headers [Orabug: 37626372][CVE-2024-6232]
- Disable test_socket in the PGO profile task.
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
python3
3.6.8-21.0.7.el7_9
python3-debug
3.6.8-21.0.7.el7_9
python3-devel
3.6.8-21.0.7.el7_9
python3-idle
3.6.8-21.0.7.el7_9
python3-libs
3.6.8-21.0.7.el7_9
python3-test
3.6.8-21.0.7.el7_9
python3-tkinter
3.6.8-21.0.7.el7_9
Связанные CVE
Связанные уязвимости
When building nested elements using xml.dom.minidom methods such as appendChild() that have a dependency on _clear_id_cache() the algorithm is quadratic. Availability can be impacted when building excessively nested documents.
When building nested elements using xml.dom.minidom methods such as appendChild() that have a dependency on _clear_id_cache() the algorithm is quadratic. Availability can be impacted when building excessively nested documents.
When building nested elements using xml.dom.minidom methods such as appendChild() that have a dependency on _clear_id_cache() the algorithm is quadratic. Availability can be impacted when building excessively nested documents.
When building nested elements using xml.dom.minidom methods such as ap ...