USN-7710-1: Python vulnerabilities

🗓️ 21 Aug 2025 18:30:35Reported by UbuntuType

ubuntu

ubuntu🔗 ubuntu.com👁 5 Views

Python HTML and Tar parsing flaws may cause denial of service (6069, 8194).

Reporter	Title	Published	Views	Family All 621
IBM Security Bulletins	Security Bulletin: IBM Instana Observability is affected by multiple vulnerabilities within Instana Agent container image	10 Mar 202612:40	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to an infinate loop condition in CPython [CVE-2025-8194]	17 Dec 202514:19	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Virtualization Engine TS7700 is susceptible to Denial of Service.	5 Feb 202618:10	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Instana Observability has addressed Multiple Vulnerabilities within Instana Agent container image	18 Sep 202507:50	–	ibm
ATTACKERKB	CVE-2025-6069	17 Jun 202513:39	–	attackerkb
ATTACKERKB	CVE-2025-8194	28 Jul 202518:42	–	attackerkb
Tenable Nessus	Amazon Linux 2023 : python3.12, python3.12-devel, python3.12-idle (ALAS2023-2025-1056)	10 Jul 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : python3, python3-devel, python3-idle (ALAS2023-2025-1090)	4 Aug 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : python3.11, python3.11-devel, python3.11-idle (ALAS2023-2025-1116)	4 Aug 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : python3.12, python3.12-devel, python3.12-idle (ALAS2023-2025-1135)	18 Aug 202500:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Ubuntu	22.04	any	idle-python3.10	3.10.12-1~22.04.11	idle-python3.10_3.10.12-1~22.04.11_any.deb
Ubuntu	22.04	any	idle-python3.11	3.11.0~rc1-1~22.04.1~esm5	idle-python3.11_3.11.0~rc1-1~22.04.1~esm5_any.deb
Ubuntu	24.04	any	idle-python3.12	3.12.3-1ubuntu0.8	idle-python3.12_3.12.3-1ubuntu0.8_any.deb
Ubuntu	25.04	any	idle-python3.13	3.13.3-1ubuntu0.3	idle-python3.13_3.13.3-1ubuntu0.3_any.deb
Ubuntu	14.04	any	idle-python3.4	3.4.3-1ubuntu1~14.04.7+esm16	idle-python3.4_3.4.3-1ubuntu1~14.04.7+esm16_any.deb
Ubuntu	16.04	any	idle-python3.5	3.5.2-2ubuntu0~16.04.13+esm19	idle-python3.5_3.5.2-2ubuntu0~16.04.13+esm19_any.deb
Ubuntu	14.04	any	idle-python3.5	3.5.2-2ubuntu0~16.04.4~14.04.1+esm7	idle-python3.5_3.5.2-2ubuntu0~16.04.4~14.04.1+esm7_any.deb
Ubuntu	18.04	any	idle-python3.6	3.6.9-1~18.04ubuntu1.13+esm6	idle-python3.6_3.6.9-1~18.04ubuntu1.13+esm6_any.deb
Ubuntu	18.04	any	idle-python3.7	3.7.5-2ubuntu1~18.04.2+esm7	idle-python3.7_3.7.5-2ubuntu1~18.04.2+esm7_any.deb
Ubuntu	18.04	any	idle-python3.8	3.8.0-3ubuntu1~18.04.2+esm6	idle-python3.8_3.8.0-3ubuntu1~18.04.2+esm6_any.deb

21 Aug 2025 18:30Current

6.5Medium risk

Vulners AI Score6.5

CVSS 3.17.5

EPSS0.01007

SSVC

python vulnerabilities html parsing flaws tar archive parsing denial of service