CLSA-2025-1761056282

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1761056282.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2025-1761056282
Upstream
Published
2025-10-21T14:18:05Z
Modified
2026-06-01T00:33:18.306011244Z
Summary
python3-setuptools: Fix of 2 CVEs
Details
  • CVE-2022-40897: fix Regular Expression Denial of Service (ReDoS) in package_index.py
  • CVE-2024-6345: fix remote code execution in package_index module
References

Affected packages

TuxCare:CentOS:7 / python3-setuptools

Package

Name
python3-setuptools
Purl
pkg:rpm/tuxcare/python3-setuptools?distro=centos-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
39.2.0-10.0.5.el7.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1761056282.json"