ELS for OS
- CVEs
- Releases
- Projects
- Documentation
Live Patches
ELS for PHP
- CVEs
- Releases
- Projects
- Documentation
ELS for Python
- CVEs
- Releases
- Projects
- Documentation
ELS for Dotnet
- CVEs
- Releases
- Projects
- Documentation
ELS for Node.js
- CVEs
- Releases
- Projects
- Documentation

Release Info

Advisory: CLSA-2024:1727289456

OS: CentOS 7 ELS

Public date: 2024-09-25 14:37:39

Project: python

Version: 2.7.5-94.el7_9.tuxcare.els4

Errata link: https://errata.tuxcare.com/els_os/centos7els/CLSA-2024-1727289456.html

Changelog

- CVE-2024-6232: fixed regular expressions that allowed excessive backtracking during tarfile.TarFile header parsing are vulnerable to ReDoS via specifically-crafted tar archives.

Update

Update command: yum update python*

Packages list

python-2.7.5-94.el7_9.tuxcare.els4.x86_64.rpm python-debug-2.7.5-94.el7_9.tuxcare.els4.x86_64.rpm python-devel-2.7.5-94.el7_9.tuxcare.els4.x86_64.rpm python-libs-2.7.5-94.el7_9.tuxcare.els4.i686.rpm python-libs-2.7.5-94.el7_9.tuxcare.els4.x86_64.rpm python-test-2.7.5-94.el7_9.tuxcare.els4.x86_64.rpm python-tools-2.7.5-94.el7_9.tuxcare.els4.x86_64.rpm tkinter-2.7.5-94.el7_9.tuxcare.els4.x86_64.rpm

CVEs

CVE-2024-6232