python3.12-3.12.12-1.el9_7

エラータID: AXSA:2025-11585:16

リリース日: 
2025/12/23 Tuesday - 21:50
題名: 
python3.12-3.12.12-1.el9_7
影響のあるチャネル: 
MIRACLE LINUX 9 for x86_64
Severity: 
Moderate
Description: 

以下項目について対処しました。

[Security Fix]
- Python の zipfile モジュールには、ZIP64 End of Central Directory
(EOCD) ロケータレコードのオフセット値の妥当性のチェック処理が欠落
しているため、リモートの攻撃者により、細工された ZIP 形式のアーカイブ
データの処理を介して、不正な ZIP アーカイブの作成を可能とする脆弱性が
存在します。(CVE-2025-8291)

解決策: 

パッケージをアップデートしてください。

CVE: 
CVE-2025-8291
The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory (EOCD) Locator record offset value would not be used to locate the ZIP64 EOCD record, instead the ZIP64 EOCD record would be assumed to be the previous record in the ZIP archive. This could be abused to create ZIP archives that are handled differently by the 'zipfile' module compared to other ZIP implementations. Remediation maintains this behavior, but checks that the offset specified in the ZIP64 EOCD Locator record matches the expected value.
追加情報: 

N/A

ダウンロード: 

SRPMS
  1. python3.12-3.12.12-1.el9_7.src.rpm
    MD5: 6949cf71cc3c6b46696e2b66c05ab1f6
    SHA-256: f4d3e0484d5d922b4ff5ce3a7a1b80d672e974f1483b9ab98f164e1f7052666e
    Size: 19.90 MB

Asianux Server 9 for x86_64
  1. python3.12-3.12.12-1.el9_7.i686.rpm
    MD5: 5188a951c2fa56e265138c643b3dfb4e
    SHA-256: 3b14ecd88e1bbb517595ecd0ab5c95f9d3b8527392199b260fdd0e95885220d8
    Size: 27.27 kB
  2. python3.12-3.12.12-1.el9_7.x86_64.rpm
    MD5: 20fbd8bb781be80ee4daac7ad7608ac3
    SHA-256: 41aa3e7c50e663984010f064677ab78cc56c314bb3e5e5b49e22dfcf329ee288
    Size: 27.26 kB
  3. python3.12-debug-3.12.12-1.el9_7.i686.rpm
    MD5: 1f98db34e29fe17995d812041b68b3e5
    SHA-256: eb5cda2f19a6752ed0b37a3516bd2aa659c5c3637918f34e81e2019eeb4d7b4c
    Size: 3.54 MB
  4. python3.12-debug-3.12.12-1.el9_7.x86_64.rpm
    MD5: 9535d597358ffd21eec79ebc0e76ba3b
    SHA-256: 3da125d0f2479bad120efc5969c39d461e9b93a71eda3b918da12a3dea98867b
    Size: 3.72 MB
  5. python3.12-devel-3.12.12-1.el9_7.i686.rpm
    MD5: 9dcbe765fae4340f16915ecd053c9480
    SHA-256: 158617ea79d0ce5c6343e01dd09e2b71d712554d708efc4c3184d02388f4b70e
    Size: 328.89 kB
  6. python3.12-devel-3.12.12-1.el9_7.x86_64.rpm
    MD5: 9e5c66a556ffef6e99e54d449f61cd12
    SHA-256: 024801723dd5892a3506834ca29badc98909c663e375792fd8ed1429df6c8d74
    Size: 328.85 kB
  7. python3.12-idle-3.12.12-1.el9_7.i686.rpm
    MD5: 51e21f3dbc4e8b64530524656eaaed0f
    SHA-256: 702a75501e246e5841a3fb9af54a49d01f44bf0780f761f3b8dc4bcc9dc5f1ee
    Size: 1.07 MB
  8. python3.12-idle-3.12.12-1.el9_7.x86_64.rpm
    MD5: 4b712ed7484e002bddceb96b5a7b971e
    SHA-256: 77025a14d7ffb1db4823b75bc396b7303d669e929d9fac50b08eff34d795fe48
    Size: 1.07 MB
  9. python3.12-libs-3.12.12-1.el9_7.i686.rpm
    MD5: dff3211a042dfcc327b716fa1c55c8c7
    SHA-256: 0f5bab1f89185851b29f2bc944052180657e88b2f7934037f6a5fedd5a237f28
    Size: 9.72 MB
  10. python3.12-libs-3.12.12-1.el9_7.x86_64.rpm
    MD5: 64fc471d8e63484699aadc1c57a1b8a2
    SHA-256: 1e45694ed94a5404b36877ece79a69c340026c4945ff76d702d95f999c3c8392
    Size: 9.68 MB
  11. python3.12-test-3.12.12-1.el9_7.i686.rpm
    MD5: 370846b81fc85da1a397cbda713cb01f
    SHA-256: 32e35be01811faa0ff2d5bdb6c8ab00bff7e33f90ce9530cd501bde1435f3e73
    Size: 15.75 MB
  12. python3.12-test-3.12.12-1.el9_7.x86_64.rpm
    MD5: eeeacda3be2625d36231b4e9fbb27fe0
    SHA-256: af57317b47a400334ce594490a2cc5387e2339583456e14805815b79e49fce34
    Size: 15.74 MB
  13. python3.12-tkinter-3.12.12-1.el9_7.i686.rpm
    MD5: 78038079dfc48f70cb83eda36476eba0
    SHA-256: fa9780ca8a36a2c05bcaafae3d25aca342fd9c179c3f74f83ee05be9d2f3c32b
    Size: 422.81 kB
  14. python3.12-tkinter-3.12.12-1.el9_7.x86_64.rpm
    MD5: 76e5acd570cfe6da7972c02400409cbb
    SHA-256: 1f18cbfd18d8eefef785422a1d01d2e2f905362fcb3fc0e4915459f137146995
    Size: 421.61 kB