Amazon Linux 2023 : python3, python3-devel, python3-idle (ALAS2023-2025-1146)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1146 advisory. There is a defect in the CPython tarfile module affecting the TarFile extraction and entry enumeration APIs. The tar implementation would process tar archives with negative offsets without error,...