Release date:
2026-04-28 13:52:23 UTC
Description:
* SECURITY UPDATE: use-after-free in lzma/bz2/gzip decompressors
- debian/patches/CVE-2026-6100.patch: null next_in at the error:
label of decompress() in Modules/_bz2module.c and
Modules/_lzmamodule.c so the decompressor cannot be re-used
with a stale buffer pointer after a MemoryError.
- CVE-2026-6100
Updated packages:
-
alt-python39_3.9.23-11_amd64.deb
sha:a83cb76c10f715d4dc4e843486b147cb3e8e9a7f
-
alt-python39-debug_3.9.23-11_amd64.deb
sha:de0ae0a6522789d13f1a4b2244ebb43933fae6df
-
alt-python39-devel_3.9.23-11_amd64.deb
sha:3c8e806462e3d5e1f53f5a517e155c7471ee5189
-
alt-python39-idle_3.9.23-11_amd64.deb
sha:e66c4f5154c244890c6a1a1aea836012a6c87907
-
alt-python39-libs_3.9.23-11_amd64.deb
sha:ebe30c82fc394452ceb97b0e66051a1f913eacf4
-
alt-python39-test_3.9.23-11_amd64.deb
sha:adcb36c6859c14441fd853531cc6273d9f7b6fba
-
alt-python39-tkinter_3.9.23-11_amd64.deb
sha:45cecf307675558fde1afc8044dd72a6273b46f6
-
alt-python39_3.9.23-11_arm64.deb
sha:5dc5f613962e2e8cb2fc11f23240d6908c0ca66a
-
alt-python39-debug_3.9.23-11_arm64.deb
sha:f39275446834f51e16265f79373d25be58d2e99d
-
alt-python39-devel_3.9.23-11_arm64.deb
sha:47bb91d4907a0432fc21712d8b3b91b34c7c990c
-
alt-python39-idle_3.9.23-11_arm64.deb
sha:d0644026a900184e1423de2aaf186015879ffdeb
-
alt-python39-libs_3.9.23-11_arm64.deb
sha:be7266794967d949db79afb4306dbc03da2a5e2f
-
alt-python39-test_3.9.23-11_arm64.deb
sha:6a93aefc6486155f3d11b785151da090579f9129
-
alt-python39-tkinter_3.9.23-11_arm64.deb
sha:07b461130fbc6a182f5972f20a34fe9587700c53
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
