Advisory: CLSA-2025:1740471603
OS: AlmaLinux 9.2 ESU
Public date: 2025-02-25 03:20:05
Project: python3.11
Version: 3.11.2-2.el9_2.2.tuxcare.els4
Errata link: https://errata.tuxcare.com/els_os/almalinux9.2esu/CLSA-2025-1740471603.html
- CVE-2007-4559: add security filter in the tarfile module to prevent directory traversal attacks. Uses `filter="data"` by default to block unsafe filenames; set `filter="tar"` to keep legacy behavior
Update command: dnf update python3.11*
python3.11-3.11.2-2.el9_2.2.tuxcare.els4.i686.rpm python3.11-3.11.2-2.el9_2.2.tuxcare.els4.x86_64.rpm python3.11-debug-3.11.2-2.el9_2.2.tuxcare.els4.i686.rpm python3.11-debug-3.11.2-2.el9_2.2.tuxcare.els4.x86_64.rpm python3.11-devel-3.11.2-2.el9_2.2.tuxcare.els4.i686.rpm python3.11-devel-3.11.2-2.el9_2.2.tuxcare.els4.x86_64.rpm python3.11-idle-3.11.2-2.el9_2.2.tuxcare.els4.i686.rpm python3.11-idle-3.11.2-2.el9_2.2.tuxcare.els4.x86_64.rpm python3.11-libs-3.11.2-2.el9_2.2.tuxcare.els4.i686.rpm python3.11-libs-3.11.2-2.el9_2.2.tuxcare.els4.x86_64.rpm python3.11-test-3.11.2-2.el9_2.2.tuxcare.els4.i686.rpm python3.11-test-3.11.2-2.el9_2.2.tuxcare.els4.x86_64.rpm python3.11-tkinter-3.11.2-2.el9_2.2.tuxcare.els4.i686.rpm python3.11-tkinter-3.11.2-2.el9_2.2.tuxcare.els4.x86_64.rpm