CLSA-2025-1753209568

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.5els/CLSA-2025-1753209568.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2025-1753209568

Upstream

CVE-2024-12718

CVE-2025-4138

CVE-2025-4330

CVE-2025-4435

CVE-2025-4517

Published

2025-07-22T18:39:32Z

Modified

2026-05-29T01:19:33.551082077Z

Summary

python3: Fix of 5 CVEs

Details

CVE-2024-12718, CVE-2025-4138, CVE-2025-4330, CVE-2025-4435, CVE-2025-4517: fix multiple tarfile extraction filter bypasses (filter="tar"/filter="data")

References

https://errata.tuxcare.com/els_os/centos8.5els/CLSA-2025-1753209568.html

Affected packages