Updated: 2025-11-10 02:33:42.472916
Description:
There is a MEDIUM severity vulnerability affecting CPython. Regular expressions that allowed excessive backtracking during tarfile.TarFile header parsing are vulnerable to ReDoS via specifically-crafted tar archives.
| Links | NIST | CIRCL | RHEL | Ubuntu |
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | 0.0 | |
| CVSS Version 3.x | HIGH | 7.5 |
| OS name | Project name | Version | Score | Severity | Status | Errata | Last updated | Statement |
|---|---|---|---|---|---|---|---|---|
| Ubuntu 18.04 ELS | python2.7 | 2.7.17-1 | 7.5 | HIGH | Released | CLSA-2024:1727895277 | 2024-10-02 17:28:09 | |
| Ubuntu 18.04 ELS | python3.6 | 3.6.9-1 | 7.5 | HIGH | Released | CLSA-2025:1739904482 | 2025-02-20 06:38:57 |