Advisory: CLSA-2024:1728071619
OS: CentOS 6 ELS
Public date: 2024-10-04 15:53:41
Project: python
Version: 2.6.6-70.el6.tuxcare.els14
Errata link: https://errata.tuxcare.com/els_os/centos6els/CLSA-2024-1728071619.html
- CVE-2024-7592: fix algorithm with quadratic complexity to avoid using excess CPU resources while parsing the cookie value - CVE-2024-6232: fix regular expressions that allowed excessive backtracking during tarfile.TarFile header parsing and was vulnerable to ReDoS via specifically-crafted tar archives
Update command: yum update python*
python-2.6.6-70.el6.tuxcare.els14.i686.rpm python-2.6.6-70.el6.tuxcare.els14.x86_64.rpm python-devel-2.6.6-70.el6.tuxcare.els14.i686.rpm python-devel-2.6.6-70.el6.tuxcare.els14.x86_64.rpm python-libs-2.6.6-70.el6.tuxcare.els14.i686.rpm python-libs-2.6.6-70.el6.tuxcare.els14.x86_64.rpm python-test-2.6.6-70.el6.tuxcare.els14.x86_64.rpm python-tools-2.6.6-70.el6.tuxcare.els14.x86_64.rpm tkinter-2.6.6-70.el6.tuxcare.els14.x86_64.rpm