Oracle Linux Security Advisory ELSA-2026-2713 http://linux.oracle.com/errata/ELSA-2026-2713.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: python3-3.6.8-21.0.7.el7_9.i686.rpm python3-3.6.8-21.0.7.el7_9.x86_64.rpm python3-debug-3.6.8-21.0.7.el7_9.i686.rpm python3-debug-3.6.8-21.0.7.el7_9.x86_64.rpm python3-devel-3.6.8-21.0.7.el7_9.i686.rpm python3-devel-3.6.8-21.0.7.el7_9.x86_64.rpm python3-idle-3.6.8-21.0.7.el7_9.i686.rpm python3-idle-3.6.8-21.0.7.el7_9.x86_64.rpm python3-libs-3.6.8-21.0.7.el7_9.i686.rpm python3-libs-3.6.8-21.0.7.el7_9.x86_64.rpm python3-test-3.6.8-21.0.7.el7_9.i686.rpm python3-test-3.6.8-21.0.7.el7_9.x86_64.rpm python3-tkinter-3.6.8-21.0.7.el7_9.i686.rpm python3-tkinter-3.6.8-21.0.7.el7_9.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates/python3-3.6.8-21.0.7.el7_9.src.rpm Related CVEs: CVE-2025-12084 Description of changes: [3.6.8-21.0.7] - Security update CVE-2025-12084 [Orabug: 38971895] [3.6.8-21.0.5] - tarfile now validates archives to ensure member offsets are non-negative [Orabug: 38442771][CVE-2025-8194] [3.6.8-21.0.3] - Fix DoS parsing crafted tarfile headers [Orabug: 37626372][CVE-2024-6232] - Disable test_socket in the PGO profile task. _______________________________________________ El-errata mailing list [email protected] https://oss.oracle.com/mailman/listinfo/el-errata
