[CLSA-2026:1782979680] python2: Fix of 2 CVEs
Type:
security
Severity:
Important
Release date:
2026-07-02 08:08:17 UTC
Description:
- CVE-2026-4224: pyexpat: guard conv_content_model() with Py_EnterRecursiveCall to prevent a C stack overflow when parsing a deeply nested content model in an inline DTD with a registered ElementDeclHandler
Updated packages:
  • python2-2.7.18-7.module_el8.5.0+2431+cc4ff94e.tuxcare.els24.x86_64.rpm
    sha:c46a6455a26593d6982dd38cde4173c2343ba3ffa99ca9bdedb4087a0dbed3c7
  • python2-debug-2.7.18-7.module_el8.5.0+2431+cc4ff94e.tuxcare.els24.x86_64.rpm
    sha:38ba44778abf931ed552e2c612de894b4565ebe6a478106df7fde67fa0c90bc6
  • python2-devel-2.7.18-7.module_el8.5.0+2431+cc4ff94e.tuxcare.els24.x86_64.rpm
    sha:60da9c01c9b9ce776f3d2bcd75514f2439fdd8025eb3440e4d67799e581356ce
  • python2-libs-2.7.18-7.module_el8.5.0+2431+cc4ff94e.tuxcare.els24.x86_64.rpm
    sha:9ecd5f91e7dfd23b508fd4e19b341559cd0ad17534f74ec01899b85aba00dd6d
  • python2-test-2.7.18-7.module_el8.5.0+2431+cc4ff94e.tuxcare.els24.x86_64.rpm
    sha:0eff020e4480d7eaed2fd02e52d81842b171bdce3880f53d91804e0735ca6d60
  • python2-tkinter-2.7.18-7.module_el8.5.0+2431+cc4ff94e.tuxcare.els24.x86_64.rpm
    sha:55d08e9a3371621873f475afcdd2d00f52b04c027e34ffe23d708601be764545
  • python2-tools-2.7.18-7.module_el8.5.0+2431+cc4ff94e.tuxcare.els24.x86_64.rpm
    sha:18e3f5c8e704fa89603f59bbe60bb3eef2ad36055b9936b8091bce3f9c777cb9
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.