Release date:
2025-10-13 14:51:23 UTC
Description:
* SECURITY UPDATE: Overwriting of arbitrary files by remote attackers
- debian/patches/CVE-2007-4559.patch: implement PEP 706 - a filter in
the tarfile module to prevent directory traversal vulnerability
- CVE-2007-4559
* SECURITY UPDATE: Bypass of domain e-mail-based protection mechanism by
incorrect parsing of e-mail addresses that contain a special character
- debian/patches/CVE-2023-27043.patch: reject malformed addresses in
email.parseaddr()
- CVE-2023-27043
* SECURITY UPDATE: Bypass of the TLS handshake and included protections
- debian/patches/CVE-2023-40217.patch: check for & avoid the ssl
pre-close flaw
- CVE-2023-40217
Updated packages:
-
alt-python36_3.6.15-17_amd64.deb
sha:1c9f83e7e7979395218ec93901cae22840035169
-
alt-python36-debug_3.6.15-17_amd64.deb
sha:33e602d117263228a7053ccda8f4cf5a16ef0ea9
-
alt-python36-devel_3.6.15-17_amd64.deb
sha:0ab24c748e54e0699a7eccaa3fafe551b04763e6
-
alt-python36-libs_3.6.15-17_amd64.deb
sha:6e00bd9249d7f1a0423cfa46e520c86b8660f752
-
alt-python36-test_3.6.15-17_amd64.deb
sha:49d21192a834ba992c17cc70f8eb8ce335b5ddba
-
alt-python36-tkinter_3.6.15-17_amd64.deb
sha:905f433287901e5f958bfbe3c77b2a3fca9e66c8
-
alt-python36-tools_3.6.15-17_amd64.deb
sha:3b37dee4c02111398b5aaac944d43311e75c812b
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
