python-setuptools-53.0.0-13.el9_6.1

エラータID: AXSA:2025-10622:03

Release date: 
Tuesday, July 29, 2025 - 11:00
Subject: 
python-setuptools-53.0.0-13.el9_6.1
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
Moderate
Description: 

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.

Security Fix(es):

* setuptools: Path Traversal Vulnerability in setuptools PackageIndex (CVE-2025-47273)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2025-47273
setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python packages. A path traversal vulnerability in `PackageIndex` is present in setuptools prior to version 78.1.1. An attacker would be allowed to write files to arbitrary locations on the filesystem with the permissions of the process running the Python code, which could escalate to remote code execution depending on the context. Version 78.1.1 fixes the issue.

Solution: 

Update packages.

CVEs: 
CVE-2025-47273
setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python packages. A path traversal vulnerability in `PackageIndex` is present in setuptools prior to version 78.1.1. An attacker would be allowed to write files to arbitrary locations on the filesystem with the permissions of the process running the Python code, which could escalate to remote code execution depending on the context. Version 78.1.1 fixes the issue.
Additional Info: 

N/A

Download: 

SRPMS
  1. python-setuptools-53.0.0-13.el9_6.1.src.rpm
    MD5: 3298cd7c37a199a329ca9848540ade4b
    SHA-256: 667ec793aad7a3928d740b3c02e65417d74e18cb660eb83b64a8c165d5363de4
    Size: 1.98 MB

Asianux Server 9 for x86_64
  1. python3-setuptools-53.0.0-13.el9_6.1.noarch.rpm
    MD5: 3370d6b48b2c2bbeea7cea212c2c1a73
    SHA-256: 5f539f591ae862520b5e368fc3ace3d24302f1a4844539c40e6f6fa021b66012
    Size: 940.01 kB
  2. python3-setuptools-wheel-53.0.0-13.el9_6.1.noarch.rpm
    MD5: 4b02e462ee8f0060a53f59f154bd82c5
    SHA-256: 7ad7fb8828d3a36c286950b933ba8efe25671b9bee278658b613b25e15a1752c
    Size: 466.85 kB