CLSA-2025-1761051864

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2025-1761051864.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2025-1761051864
Upstream
Published
2025-10-21T13:04:32Z
Modified
2026-06-01T00:33:26.904359434Z
Summary
python3-setuptools: Fix of 2 CVEs
Details
  • CVE-2022-40897: fix Regular Expression Denial of Service (ReDoS) in package_index.py
  • CVE-2024-6345: fix remote code execution in package_index module
References

Affected packages

TuxCare:OracleLinux:7 / python3-setuptools

Package

Name
python3-setuptools
Purl
pkg:rpm/tuxcare/python3-setuptools?distro=oraclelinux-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
39.2.0-10.0.5.el7.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2025-1761051864.json"