CLSA-2025-1764615456

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1764615456.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2025-1764615456
Published
2025-12-01T19:04:59Z
Modified
2026-06-01T00:31:23.393937523Z
Summary
Update of python3.11-setuptools
Details
  • CVE:2025-47273: fix path traversal in PackageIndex.download leading to arbitrary file write
References

Affected packages

TuxCare:AlmaLinux:9.2 / python3.11-setuptools

Package

Name
python3.11-setuptools
Purl
pkg:rpm/tuxcare/python3.11-setuptools?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
65.5.1-2.el9.tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1764615456.json"

TuxCare:AlmaLinux:9.2 / python3.11-setuptools-wheel

Package

Name
python3.11-setuptools-wheel
Purl
pkg:rpm/tuxcare/python3.11-setuptools-wheel?distro=almalinux-9.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
65.5.1-2.el9.tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1764615456.json"