Release date:
2026-05-13 14:48:13 UTC
Description:
- CVE-2026-3446: binascii.a2b_base64 / base64.b64decode no longer abort the
decoder loop on the first padded quad. The pad character is treated as
non-alphabet data per RFC 4648 section 3.3, so excess data after the
padding is decoded instead of being silently dropped.
Updated packages:
-
alt-python36-3.6.15-23.el8.x86_64.rpm
sha:34fa470455714a3d739fe940174fba083ee9c9bec92f21ca2f1ea6c3beef434d
-
alt-python36-debug-3.6.15-23.el8.x86_64.rpm
sha:14f7b72435f9294d4bffe94babcd2a06908db475b0463b195472aac9a71dfeea
-
alt-python36-devel-3.6.15-23.el8.x86_64.rpm
sha:123bcd7327241db666581c6f9865addceeb0a553792690ccb621d148c694390d
-
alt-python36-libs-3.6.15-23.el8.x86_64.rpm
sha:80aeb688e24214a4ef533242d5644fbb42ebc7186c4af37f587829f5f203f063
-
alt-python36-test-3.6.15-23.el8.x86_64.rpm
sha:948382cfb6a475e987ba0014470aa294ed76899fe86c6586dd8dfbb48daa420c
-
alt-python36-tkinter-3.6.15-23.el8.x86_64.rpm
sha:ba25d8382162bffd8fe4c3fd2c5e1566e5fae9b3c5e07a826f577f5bb56968e2
-
alt-python36-tools-3.6.15-23.el8.x86_64.rpm
sha:af6a334832b030b1eaeb013dd40982f7826a43c70b6e468db61e0c03d1124a6a
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
