ALSA-2025:10026

[ALSA-2025:10026] Important: python3.11 security update

Type:

security

Severity:

important

Release date:

2025-07-01

Description:

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.  

Security Fix(es):  

  * cpython: Tarfile extracts filtered members when errorlevel=0 (CVE-2025-4435)
  * cpython: Bypass extraction filter to modify file metadata outside extraction directory (CVE-2024-12718)
  * cpython: Extraction filter bypass for linking outside extraction directory (CVE-2025-4330)
  * python: cpython: Arbitrary writes via tarfile realpath overflow (CVE-2025-4517)
  * cpython: python: Bypassing extraction filter to create symlinks to arbitrary targets outside extraction directory (CVE-2025-4138)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	python3.11-devel-3.11.13-1.el8_10.aarch64.rpm	14f33c848500ea6af25bb5d6d091728331660686694e028a88cb95bcdfca8723
aarch64	python3.11-debug-3.11.13-1.el8_10.aarch64.rpm	26cd5dd102fd0d3165209a01d544016352dd95d95d51ba36ae40a8308a0a638d
aarch64	python3.11-3.11.13-1.el8_10.aarch64.rpm	60b50dccf824ace0328f27b994b0631f2eb02e1c78ba8fc65f878aadce8effad
aarch64	python3.11-idle-3.11.13-1.el8_10.aarch64.rpm	6ac6965e120cca474cc2cbee74af3aeb908c48a7d70f0998904ba95bee4cd8b6
aarch64	python3.11-test-3.11.13-1.el8_10.aarch64.rpm	6f597a66dd43de2ef67ab01275d4c757c858121b8c204b19f6749f6533a00516
aarch64	python3.11-libs-3.11.13-1.el8_10.aarch64.rpm	d6dc88e8a134eb07c478966d2d8e7deec7f37c80582ebcd83bb0d56e780b1505
aarch64	python3.11-tkinter-3.11.13-1.el8_10.aarch64.rpm	f93bdd37ec7d9f9f1334332976b34a9a469f88a15cf28e25b3c5285c40bc0aa2
i686	python3.11-debug-3.11.13-1.el8_10.i686.rpm	2e8bc639f636bbc7bce9bd8f7e0c367ed52dccd6f911f3f22b4aa749c1977b33
i686	python3.11-devel-3.11.13-1.el8_10.i686.rpm	2fff0a050bab8b498932ebff360f898ca5c33a362abd2d3d31ef7756616f04a0
i686	python3.11-test-3.11.13-1.el8_10.i686.rpm	477a1f61070fce86025607b90b292ff143076b01ec08ecdaabdc39323bca6947
i686	python3.11-libs-3.11.13-1.el8_10.i686.rpm	5e2aedab31f7222ea42c7234d6870a4340a616e2ba55f20f246ce39e3eb21b84
i686	python3.11-3.11.13-1.el8_10.i686.rpm	71fb376eb281e5e33c0b900bb47b759a3c22b9ca1019b706e5fe6fc889ee532e
i686	python3.11-tkinter-3.11.13-1.el8_10.i686.rpm	b84d72cf635b5aebd1d18fba61609a80c90887cc8f5e62f20e86039348079092
i686	python3.11-idle-3.11.13-1.el8_10.i686.rpm	d2408088af40d61aedd140f56d318b0d94d55dc5c59b4cb6b841002d71b06438
noarch	python3.11-rpm-macros-3.11.13-1.el8_10.noarch.rpm	0eebe8b0e759d8639bdbb926786c15e87583b810f17acdd0bf5df4d184a784b2
ppc64le	python3.11-tkinter-3.11.13-1.el8_10.ppc64le.rpm	0d4f0a375afa0d99f56c4eb295a02512207bfc18a4b88c95893f5f9726b18776
ppc64le	python3.11-test-3.11.13-1.el8_10.ppc64le.rpm	1f5d517a2a644efb0fabbe8ed2ea7a2ee94fb4c600c6cd71362f245896bc9a82
ppc64le	python3.11-libs-3.11.13-1.el8_10.ppc64le.rpm	3caa2bb83c052ed7d7ce8864fdb392491e5bd83207e075fa147fe30e833926be
ppc64le	python3.11-devel-3.11.13-1.el8_10.ppc64le.rpm	55a0a6ad7a0b6e41a96d3a1c1b19d18a11e4a99963cb491edcbe19979f43a2d3
ppc64le	python3.11-debug-3.11.13-1.el8_10.ppc64le.rpm	7143c7100591a2ea7ee286f9e9c6306b067e408e35e22434919219cc1a6ce062
ppc64le	python3.11-3.11.13-1.el8_10.ppc64le.rpm	a8e370b0a48d1d5691da7f8b5fa903245d8348e79fbe8a00cd5b12c8d5bb6580
ppc64le	python3.11-idle-3.11.13-1.el8_10.ppc64le.rpm	e0892747ba94eb905fca01f13562ef51cbbb0ba25a9d4a9b7c868cfc89a6590e
s390x	python3.11-debug-3.11.13-1.el8_10.s390x.rpm	450e037b356ac3f285653e3b17a4dad6be93e3c6ae00b4f3215fb8019d8528c8
s390x	python3.11-tkinter-3.11.13-1.el8_10.s390x.rpm	688f2d73644f4eca19d5d347a6afa9c0b65233e0f189e24f8d7d5045a9b820c8
s390x	python3.11-devel-3.11.13-1.el8_10.s390x.rpm	71ca0708c4cbcd6657a2fcdd26672063faae3edb04646baab5d98d08fb44215d
s390x	python3.11-test-3.11.13-1.el8_10.s390x.rpm	be4f7c12bf5879dbd8aae5b671e7e9feef1946dc7efcaf696250f6deaef45a68
s390x	python3.11-idle-3.11.13-1.el8_10.s390x.rpm	c09761374e185535cd98b804888beca8488b707fcc2b5b287e1564592a9826da
s390x	python3.11-3.11.13-1.el8_10.s390x.rpm	c32617c4deffd7fb634ec8d8e1a3f4326962c3643bb150a29bd9aafaf6ca324d
s390x	python3.11-libs-3.11.13-1.el8_10.s390x.rpm	c440444ebd6606e84acf8f4e966bbe92d664eb0c808a4912628563e47fb5d2f7
x86_64	python3.11-devel-3.11.13-1.el8_10.x86_64.rpm	06538d9deffba9755791b4b35eb44d8547583b70716f965024e30601ca621dd4
x86_64	python3.11-tkinter-3.11.13-1.el8_10.x86_64.rpm	0e07426d7da1e0bf71671f16b46d4a88e6ab2241dea9f6165c21bf52b5f4cff0
x86_64	python3.11-debug-3.11.13-1.el8_10.x86_64.rpm	3c7fcdb101c88a14943cce7c9f6163cd56c695f3a175ef91930ddc6f487c4133
x86_64	python3.11-3.11.13-1.el8_10.x86_64.rpm	4a433191815130ed00a987e34f6dc0889a42546a84e4a027e1f5b012e4009009
x86_64	python3.11-libs-3.11.13-1.el8_10.x86_64.rpm	74e73ba18397494254b093ed77aa5534c0e1ba327700f8b0c19efb1eb8d43744
x86_64	python3.11-test-3.11.13-1.el8_10.x86_64.rpm	cdc060961f8700d8a8101c69f88d01727b9c78adcd2ffe6cda16e69c6af42bf0
x86_64	python3.11-idle-3.11.13-1.el8_10.x86_64.rpm	ff41640d475ccde8d4f8b43b89e88eb0e3a58fdbe5d472a2d2947959bc754509

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.