Release date:
2026-05-13 14:11:08 UTC
Description:
- CVE-2026-3446: binascii.a2b_base64 / base64.b64decode no longer abort the
decoder loop on the first padded quad. The pad character is treated as
non-alphabet data per RFC 4648 section 3.3, so excess data after the
padding is decoded instead of being silently dropped.
Updated packages:
-
alt-python36-3.6.15-23.el10.x86_64.rpm
sha:7129d371859bdcd295f502a972106a445ffa0d799403447920226d2afa03a387
-
alt-python36-debug-3.6.15-23.el10.x86_64.rpm
sha:9e19b831e8ff3b6e429030b515cab54555b3515b2e93ae12c1dbc63e09a3a45e
-
alt-python36-devel-3.6.15-23.el10.x86_64.rpm
sha:de83c7161f99d7d3cabd1cb6feebc17b6ae9dfe93861338a2928cfaedc1b5090
-
alt-python36-libs-3.6.15-23.el10.x86_64.rpm
sha:ae339d9f31cc7a799fdde5197ecad98ae1855c7829282f421a727afeda9d8c37
-
alt-python36-test-3.6.15-23.el10.x86_64.rpm
sha:3c5b7f4b8205b82473b0205b64054df4edf4764bf4f86efefb6c005354353467
-
alt-python36-tkinter-3.6.15-23.el10.x86_64.rpm
sha:2fb1666ef7db483e67a657b8aa33dcdbf53a05139be1bf01fba249cba8247863
-
alt-python36-tools-3.6.15-23.el10.x86_64.rpm
sha:5189dec3b59c6badfd5709e1ac080c1c661479c71672ae0f5b88907bf31e3e67
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
