Opened 5 weeks ago

Closed 5 weeks ago

#5774 closed enhancement (fixed)

Fix CVE-2025-8194 in Python

Reported by: Douglas R. Reno Owned by: Douglas R. Reno
Priority: high Milestone: 12.4
Component: Book Version: git
Severity: normal Keywords:
Cc:

Description

See BLFS Ticket #21895. A high severity vulnerability was found in the Tarfile module in Python, which allows for an infinite loop when parsing with a negative member offset

Change History (2)

comment:1 by Douglas R. Reno, 5 weeks ago

Owner: changed from lfs-book to Douglas R. Reno
Status: newassigned

comment:2 by Douglas R. Reno, 5 weeks ago

Resolution: fixed
Status: assignedclosed

Fixed at 9f50c6cfe16e8f4a39b72cfd33238e584d2cffd4

SA-12.3-087 issued

Note: See TracTickets for help on using tickets.