Release date:
2025-10-13 14:53:48 UTC
Description:
* SECURITY UPDATE: Overwriting of arbitrary files by remote attackers
- debian/patches/CVE-2007-4559.patch: implement PEP 706 - a filter in
the tarfile module to prevent directory traversal vulnerability
- CVE-2007-4559
* SECURITY UPDATE: Bypass of domain e-mail-based protection mechanism by
incorrect parsing of e-mail addresses that contain a special character
- debian/patches/CVE-2023-27043.patch: reject malformed addresses in
email.parseaddr()
- CVE-2023-27043
* SECURITY UPDATE: Bypass of the TLS handshake and included protections
- debian/patches/CVE-2023-40217.patch: check for & avoid the ssl
pre-close flaw
- CVE-2023-40217
Updated packages:
-
alt-python36_3.6.15-17_amd64.deb
sha:ae965e38f8c979ad1e3bbd66d9a807a9163f0408
-
alt-python36-debug_3.6.15-17_amd64.deb
sha:84582dc5a56880e570bfe5ce61ee2da4d4b9dd8f
-
alt-python36-devel_3.6.15-17_amd64.deb
sha:d27004c4e64c70d920c91d7e4f2608cbc78e5348
-
alt-python36-libs_3.6.15-17_amd64.deb
sha:f26e0491a0ba5f2833254d2fd0dd6ab605ba6822
-
alt-python36-test_3.6.15-17_amd64.deb
sha:16a2c62acba7149f3602ceabd10dc5a1a48070df
-
alt-python36-tkinter_3.6.15-17_amd64.deb
sha:2d0f442131742646dd0c4550ce15eec8f97c1e1f
-
alt-python36-tools_3.6.15-17_amd64.deb
sha:79c0e8973f5f947c4f1fb5c06cadf19547119531
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
