Release date:
2026-04-28 12:46:16 UTC
Description:
* SECURITY UPDATE: use-after-free in lzma/bz2/gzip decompressors
- debian/patches/CVE-2026-6100.patch: null next_in at the error:
label of decompress() in Modules/_bz2module.c and
Modules/_lzmamodule.c so the decompressor cannot be re-used
with a stale buffer pointer after a MemoryError.
- CVE-2026-6100
Updated packages:
-
alt-python39_3.9.23-11_amd64.deb
sha:b6eb7b067461e4cd8ff8c76e379a39bd8bdd1e00
-
alt-python39-debug_3.9.23-11_amd64.deb
sha:de0ae0a6522789d13f1a4b2244ebb43933fae6df
-
alt-python39-devel_3.9.23-11_amd64.deb
sha:8f837e45a9efdd43e2d6e8d547e5d7f943c02edf
-
alt-python39-idle_3.9.23-11_amd64.deb
sha:7679aa8f88d2c0e5ede3f835e9d45c48c17e7d89
-
alt-python39-libs_3.9.23-11_amd64.deb
sha:8e4967428c413a33ac920168f7763bfbafe254c6
-
alt-python39-test_3.9.23-11_amd64.deb
sha:f1d1e50c3952fe7c83ff76dfcf89d7831d47953f
-
alt-python39-tkinter_3.9.23-11_amd64.deb
sha:6bbd10c439c9ae38d14020b86a8e492288a52e25
-
alt-python39_3.9.23-11_arm64.deb
sha:6a75a44766c78e13f38d361a3351a1ea7a3d5518
-
alt-python39-debug_3.9.23-11_arm64.deb
sha:f39275446834f51e16265f79373d25be58d2e99d
-
alt-python39-devel_3.9.23-11_arm64.deb
sha:61b4d7baeda7d0bd3240348c822adcf0486f4cd9
-
alt-python39-idle_3.9.23-11_arm64.deb
sha:8d0b1bc9ac934621a71afa01aa6e13b7536b084b
-
alt-python39-libs_3.9.23-11_arm64.deb
sha:276fe20d4d00fdf9f39aee4798a518e5658fe450
-
alt-python39-test_3.9.23-11_arm64.deb
sha:d91f21d245097c1b9d5ebc4b73a4bec37120dfbf
-
alt-python39-tkinter_3.9.23-11_arm64.deb
sha:4359c614e9caa140c1b4b315efd42a4eedd19f87
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
