3 matches found
Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: python3.13: python3.13-3.13.14-1.4.hum1 aarch64, x8664 python3.13-debug-3.13.14-1.4.hum1 aarch64, x8664 python3.13-devel-3.13.14-1.4.hum1 aarch64, x8664 python3.13-freethreading-3.13.14-1.4.hum1...
CVE-2026-11940
creationtimestamp| type| source ---|---|--- 2026-06-23 17:15:06+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3moxvn5enye2b 2026-06-25 12:00:20+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mp4eyb6hgs2o 2026-06-28 02:30:22+00:00| seen|...
CVE-2026-11940 tarfile extraction filter bypass allows escaping the destination directory
tarfile.extractall with the 'data' or 'tar' filter could be bypassed by a crafted archive where a hardlink references a symlink stored at a deeper name than the hardlink itself. The extraction fallback validated the symlink at it's archived location but recreated it at the hardlink's shallower...