CVE-2025-8194

EUVD-2025-22999

28.07.2025, 19:15

There is a defect in the CPython “tarfile” module affecting the “TarFile” extraction and entry enumeration APIs. The tar implementation would process tar archives with negative offsets without error, resulting in an infinite loop and deadlock during the parsing of maliciously crafted tar archives. 

This vulnerability can be mitigated by including the following patch after importing the “tarfile” module:  https://gist.github.com/sethmlarson/1716ac5b82b73dbcbf23ad2eff8b33e1

Infinite Loop

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
PSF	CNA	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 51%

Early Detection

Affected products identified ahead of NVD analysis through intelligence sources.

Vendor	Product	Version	Source
python	cpython	𝑥 < 3.10.19	CNA
python	cpython	3.11.0 ≤ 𝑥 < 3.11.14	CNA
python	cpython	3.12.0 ≤ 𝑥 < 3.12.12	CNA
python	cpython	3.13.0 ≤ 𝑥 < 3.13.6	CNA

Ubuntu Releases

Ubuntu Product

Codename

python2.7

bionic	Fixed 2.7.17-1~18.04ubuntu1.13+esm12 released
focal	Fixed 2.7.18-1~20.04.7+esm8 released
jammy	Fixed 2.7.18-13ubuntu1.5+esm7 released
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	Fixed 2.7.6-8ubuntu0.6+esm26 released
xenial	Fixed 2.7.12-1ubuntu0~16.04.18+esm17 released

python3.4

jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	Fixed 3.4.3-1ubuntu1~14.04.7+esm16 released

python3.5

jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne
trusty	Fixed 3.5.2-2ubuntu0~16.04.4~14.04.1+esm7 released
xenial	Fixed 3.5.2-2ubuntu0~16.04.13+esm19 released

python3.6

bionic	Fixed 3.6.9-1~18.04ubuntu1.13+esm6 released
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne

python3.7

bionic	Fixed 3.7.5-2ubuntu1~18.04.2+esm7 released
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne

python3.8

bionic	Fixed 3.8.0-3ubuntu1~18.04.2+esm6 released
focal	Fixed 3.8.10-0ubuntu1~20.04.18+esm2 released
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne

python3.9

focal	Fixed 3.9.5-3ubuntu0~20.04.1+esm6 released
jammy	dne
noble	dne
plucky	dne
questing	dne
resolute	dne

python3.10

jammy	Fixed 3.10.12-1~22.04.11 released
noble	dne
plucky	dne
questing	dne
resolute	dne

python3.11

jammy	Fixed 3.11.0~rc1-1~22.04.1~esm5 released
noble	dne
plucky	dne
questing	dne
resolute	dne

python3.12

jammy	dne
noble	Fixed 3.12.3-1ubuntu0.8 released
plucky	dne
questing	dne
resolute	dne

python3.13

jammy	dne
noble	dne
plucky	Fixed 3.13.3-1ubuntu0.3 released
questing	Fixed 3.13.6-1 released
resolute	dne

python3.14

jammy	dne
noble	dne
plucky	dne
questing	not-affected
resolute	not-affected

openSUSE / SLES Releases

openSUSE Product

Release

libpython2_7-1_0

suse enterprise server 12 SP3

2.7.18-28.131.1

fixed

libpython2_7-1_0-32bit

suse enterprise server 12 SP3

2.7.18-28.131.1

fixed

libpython3_10-1_0

suse enterprise server 15 SP4

3.10.18-150400.4.88.1

fixed

libpython3_11-1_0

suse enterprise desktop 15 SP6	3.11.13-150600.3.35.1 fixed
suse enterprise desktop 15 SP7	3.11.13-150600.3.35.1 fixed
suse enterprise sap 15 SP4	3.11.13-150400.9.66.1 fixed
suse enterprise sap 15 SP6	3.11.13-150600.3.35.1 fixed
suse enterprise sap 15 SP7	3.11.13-150600.3.35.1 fixed
suse enterprise server 15 SP4	3.11.13-150400.9.66.1 fixed
suse enterprise server 15 SP6	3.11.13-150600.3.35.1 fixed
suse enterprise server 15 SP7	3.11.13-150600.3.35.1 fixed

libpython3_12-1_0

suse enterprise desktop 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise sap 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise server 15 SP6	3.12.11-150600.3.36.1 fixed

libpython3_13-1_0

suse enterprise desktop 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise sap 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise server 15 SP7	3.13.7-150700.4.23.1 fixed

libpython3_4m1_0

suse enterprise server 12 SP3

3.4.10-25.158.1

fixed

libpython3_6m1_0

suse enterprise desktop 15 SP6	3.6.15-150300.10.97.1 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.97.1 fixed
suse enterprise sap 15 SP3	3.6.15-150300.10.97.1 fixed
suse enterprise sap 15 SP4	3.6.15-150300.10.97.1 fixed
suse enterprise sap 15 SP5	3.6.15-150300.10.97.1 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.97.1 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.97.1 fixed
suse enterprise server 12 SP3	3.6.15-6.135.1 fixed
suse enterprise server 15 SP3	3.6.15-150300.10.97.1 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.97.1 fixed
suse enterprise server 15 SP5	3.6.15-150300.10.97.1 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.97.1 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.97.1 fixed

python

suse enterprise server 12 SP3

2.7.18-28.131.1

fixed

python-32bit

suse enterprise server 12 SP3

2.7.18-28.131.1

fixed

python-base

suse enterprise server 12 SP3

2.7.18-28.131.1

fixed

python-base-32bit

suse enterprise server 12 SP3

2.7.18-28.131.1

fixed

python-curses

suse enterprise server 12 SP3

2.7.18-28.131.1

fixed

python-demo

suse enterprise server 12 SP3

2.7.18-28.131.1

fixed

python-devel

suse enterprise server 12 SP3

2.7.18-28.131.1

fixed

python-doc

suse enterprise server 12 SP3

2.7.18-28.131.1

fixed

python-doc-pdf

suse enterprise server 12 SP3

2.7.18-28.131.1

fixed

python-gdbm

suse enterprise server 12 SP3

2.7.18-28.131.1

fixed

python-idle

suse enterprise server 12 SP3

2.7.18-28.131.1

fixed

python-tk

suse enterprise server 12 SP3

2.7.18-28.131.1

fixed

python-xml

suse enterprise server 12 SP3

2.7.18-28.131.1

fixed

python3

suse enterprise desktop 15 SP6	3.6.15-150300.10.97.2 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP3	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP4	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP5	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.97.2 fixed
suse enterprise server 12 SP3	3.4.10-25.158.1 fixed
suse enterprise server 15 SP3	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP5	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.97.2 fixed

python3-base

suse enterprise desktop 15 SP6	3.6.15-150300.10.97.1 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.97.1 fixed
suse enterprise sap 15 SP3	3.6.15-150300.10.97.1 fixed
suse enterprise sap 15 SP4	3.6.15-150300.10.97.1 fixed
suse enterprise sap 15 SP5	3.6.15-150300.10.97.1 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.97.1 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.97.1 fixed
suse enterprise server 12 SP3	3.4.10-25.158.1 fixed
suse enterprise server 15 SP3	3.6.15-150300.10.97.1 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.97.1 fixed
suse enterprise server 15 SP5	3.6.15-150300.10.97.1 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.97.1 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.97.1 fixed

python3-curses

suse enterprise desktop 15 SP6	3.6.15-150300.10.97.2 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP3	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP4	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP5	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.97.2 fixed
suse enterprise server 12 SP3	3.4.10-25.158.1 fixed
suse enterprise server 15 SP3	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP5	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.97.2 fixed

python3-dbm

suse enterprise desktop 15 SP6	3.6.15-150300.10.97.2 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP3	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP4	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP5	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP3	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP5	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.97.2 fixed

python3-devel

suse enterprise desktop 15 SP6	3.6.15-150300.10.97.1 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.97.1 fixed
suse enterprise sap 15 SP3	3.6.15-150300.10.97.1 fixed
suse enterprise sap 15 SP4	3.6.15-150300.10.97.1 fixed
suse enterprise sap 15 SP5	3.6.15-150300.10.97.1 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.97.1 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.97.1 fixed
suse enterprise server 15 SP3	3.6.15-150300.10.97.1 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.97.1 fixed
suse enterprise server 15 SP5	3.6.15-150300.10.97.1 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.97.1 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.97.1 fixed

python3-idle

suse enterprise desktop 15 SP6	3.6.15-150300.10.97.2 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP3	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP4	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP5	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP3	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP5	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.97.2 fixed

python3-tk

suse enterprise desktop 15 SP6	3.6.15-150300.10.97.2 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP3	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP4	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP5	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.97.2 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP3	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP5	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.97.2 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.97.2 fixed

python3-tools

suse enterprise sap 15 SP3	3.6.15-150300.10.97.1 fixed
suse enterprise sap 15 SP4	3.6.15-150300.10.97.1 fixed
suse enterprise sap 15 SP5	3.6.15-150300.10.97.1 fixed
suse enterprise server 15 SP3	3.6.15-150300.10.97.1 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.97.1 fixed
suse enterprise server 15 SP5	3.6.15-150300.10.97.1 fixed

python310

suse enterprise server 15 SP4

3.10.18-150400.4.88.1

fixed

python310-base

suse enterprise server 15 SP4

3.10.18-150400.4.88.1

fixed

python310-curses

suse enterprise server 15 SP4

3.10.18-150400.4.88.1

fixed

python310-dbm

suse enterprise server 15 SP4

3.10.18-150400.4.88.1

fixed

python310-devel

suse enterprise server 15 SP4

3.10.18-150400.4.88.1

fixed

python310-idle

suse enterprise server 15 SP4

3.10.18-150400.4.88.1

fixed

python310-tk

suse enterprise server 15 SP4

3.10.18-150400.4.88.1

fixed

python310-tools

suse enterprise server 15 SP4

3.10.18-150400.4.88.1

fixed

python311

suse enterprise desktop 15 SP6	3.11.13-150600.3.35.2 fixed
suse enterprise desktop 15 SP7	3.11.13-150600.3.35.2 fixed
suse enterprise sap 15 SP4	3.11.13-150400.9.66.2 fixed
suse enterprise sap 15 SP6	3.11.13-150600.3.35.2 fixed
suse enterprise sap 15 SP7	3.11.13-150600.3.35.2 fixed
suse enterprise server 15 SP4	3.11.13-150400.9.66.2 fixed
suse enterprise server 15 SP6	3.11.13-150600.3.35.2 fixed
suse enterprise server 15 SP7	3.11.13-150600.3.35.2 fixed

python311-base

suse enterprise desktop 15 SP6	3.11.13-150600.3.35.1 fixed
suse enterprise desktop 15 SP7	3.11.13-150600.3.35.1 fixed
suse enterprise sap 15 SP4	3.11.13-150400.9.66.1 fixed
suse enterprise sap 15 SP6	3.11.13-150600.3.35.1 fixed
suse enterprise sap 15 SP7	3.11.13-150600.3.35.1 fixed
suse enterprise server 15 SP4	3.11.13-150400.9.66.1 fixed
suse enterprise server 15 SP6	3.11.13-150600.3.35.1 fixed
suse enterprise server 15 SP7	3.11.13-150600.3.35.1 fixed

python311-curses

suse enterprise desktop 15 SP6	3.11.13-150600.3.35.2 fixed
suse enterprise desktop 15 SP7	3.11.13-150600.3.35.2 fixed
suse enterprise sap 15 SP6	3.11.13-150600.3.35.2 fixed
suse enterprise sap 15 SP7	3.11.13-150600.3.35.2 fixed
suse enterprise server 15 SP4	3.11.13-150400.9.66.2 fixed
suse enterprise server 15 SP6	3.11.13-150600.3.35.2 fixed
suse enterprise server 15 SP7	3.11.13-150600.3.35.2 fixed

python311-dbm

suse enterprise desktop 15 SP6	3.11.13-150600.3.35.2 fixed
suse enterprise desktop 15 SP7	3.11.13-150600.3.35.2 fixed
suse enterprise sap 15 SP6	3.11.13-150600.3.35.2 fixed
suse enterprise sap 15 SP7	3.11.13-150600.3.35.2 fixed
suse enterprise server 15 SP4	3.11.13-150400.9.66.2 fixed
suse enterprise server 15 SP6	3.11.13-150600.3.35.2 fixed
suse enterprise server 15 SP7	3.11.13-150600.3.35.2 fixed

python311-devel

suse enterprise desktop 15 SP6	3.11.13-150600.3.35.1 fixed
suse enterprise desktop 15 SP7	3.11.13-150600.3.35.1 fixed
suse enterprise sap 15 SP6	3.11.13-150600.3.35.1 fixed
suse enterprise sap 15 SP7	3.11.13-150600.3.35.1 fixed
suse enterprise server 15 SP4	3.11.13-150400.9.66.1 fixed
suse enterprise server 15 SP6	3.11.13-150600.3.35.1 fixed
suse enterprise server 15 SP7	3.11.13-150600.3.35.1 fixed

python311-doc

suse enterprise server 15 SP4

3.11.13-150400.9.66.1

fixed

python311-doc-devhelp

suse enterprise server 15 SP4

3.11.13-150400.9.66.1

fixed

python311-idle

suse enterprise desktop 15 SP6	3.11.13-150600.3.35.2 fixed
suse enterprise desktop 15 SP7	3.11.13-150600.3.35.2 fixed
suse enterprise sap 15 SP6	3.11.13-150600.3.35.2 fixed
suse enterprise sap 15 SP7	3.11.13-150600.3.35.2 fixed
suse enterprise server 15 SP4	3.11.13-150400.9.66.2 fixed
suse enterprise server 15 SP6	3.11.13-150600.3.35.2 fixed
suse enterprise server 15 SP7	3.11.13-150600.3.35.2 fixed

python311-tk

suse enterprise desktop 15 SP6	3.11.13-150600.3.35.2 fixed
suse enterprise desktop 15 SP7	3.11.13-150600.3.35.2 fixed
suse enterprise sap 15 SP6	3.11.13-150600.3.35.2 fixed
suse enterprise sap 15 SP7	3.11.13-150600.3.35.2 fixed
suse enterprise server 15 SP4	3.11.13-150400.9.66.2 fixed
suse enterprise server 15 SP6	3.11.13-150600.3.35.2 fixed
suse enterprise server 15 SP7	3.11.13-150600.3.35.2 fixed

python311-tools

suse enterprise desktop 15 SP6	3.11.13-150600.3.35.1 fixed
suse enterprise desktop 15 SP7	3.11.13-150600.3.35.1 fixed
suse enterprise sap 15 SP6	3.11.13-150600.3.35.1 fixed
suse enterprise sap 15 SP7	3.11.13-150600.3.35.1 fixed
suse enterprise server 15 SP4	3.11.13-150400.9.66.1 fixed
suse enterprise server 15 SP6	3.11.13-150600.3.35.1 fixed
suse enterprise server 15 SP7	3.11.13-150600.3.35.1 fixed

python312

suse enterprise desktop 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise sap 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise server 15 SP6	3.12.11-150600.3.36.1 fixed

python312-base

suse enterprise desktop 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise sap 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise server 15 SP6	3.12.11-150600.3.36.1 fixed

python312-curses

suse enterprise desktop 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise sap 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise server 15 SP6	3.12.11-150600.3.36.1 fixed

python312-dbm

suse enterprise desktop 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise sap 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise server 15 SP6	3.12.11-150600.3.36.1 fixed

python312-devel

suse enterprise desktop 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise sap 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise server 15 SP6	3.12.11-150600.3.36.1 fixed

python312-idle

suse enterprise desktop 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise sap 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise server 15 SP6	3.12.11-150600.3.36.1 fixed

python312-tk

suse enterprise desktop 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise sap 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise server 15 SP6	3.12.11-150600.3.36.1 fixed

python312-tools

suse enterprise desktop 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise sap 15 SP6	3.12.11-150600.3.36.1 fixed
suse enterprise server 15 SP6	3.12.11-150600.3.36.1 fixed

python313

suse enterprise desktop 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise sap 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise server 15 SP7	3.13.7-150700.4.23.1 fixed

python313-base

suse enterprise desktop 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise sap 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise server 15 SP7	3.13.7-150700.4.23.1 fixed

python313-curses

suse enterprise desktop 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise sap 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise server 15 SP7	3.13.7-150700.4.23.1 fixed

python313-dbm

suse enterprise desktop 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise sap 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise server 15 SP7	3.13.7-150700.4.23.1 fixed

python313-devel

suse enterprise desktop 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise sap 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise server 15 SP7	3.13.7-150700.4.23.1 fixed

python313-idle

suse enterprise desktop 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise sap 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise server 15 SP7	3.13.7-150700.4.23.1 fixed

python313-tk

suse enterprise desktop 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise sap 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise server 15 SP7	3.13.7-150700.4.23.1 fixed

python313-tools

suse enterprise desktop 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise sap 15 SP7	3.13.7-150700.4.23.1 fixed
suse enterprise server 15 SP7	3.13.7-150700.4.23.1 fixed

python36

suse enterprise server 12 SP3

3.6.15-6.135.1

fixed

python36-base

suse enterprise server 12 SP3

3.6.15-6.135.1

fixed

python36-curses

suse enterprise server 12 SP3

3.6.15-6.135.1

fixed

python36-dbm

suse enterprise server 12 SP3

3.6.15-6.135.1

fixed

python36-devel

suse enterprise server 12 SP3

3.6.15-6.135.1

fixed

python36-idle

suse enterprise server 12 SP3

3.6.15-6.135.1

fixed

python36-testsuite

suse enterprise server 12 SP3

3.6.15-6.135.1

fixed

python36-tk

suse enterprise server 12 SP3

3.6.15-6.135.1

fixed

python36-tools

suse enterprise server 12 SP3

3.6.15-6.135.1

fixed

Red Hat Enterprise Linux Releases

Red Hat Product

Release

platform-python

RHEL 8	0:3.6.8-71.el8_10 fixed
RHEL 8.2 AUS	0:3.6.8-24.el8_2.4 fixed
RHEL 8.4 AUS	0:3.6.8-39.el8_4.7 fixed
RHEL 8.6 AUS	0:3.6.8-47.el8_6.9 fixed
RHEL 8.6 E4S	0:3.6.8-47.el8_6.9 fixed
RHEL 8.6 TUS	0:3.6.8-47.el8_6.9 fixed
RHEL 8.8 E4S	0:3.6.8-51.el8_8.11 fixed
RHEL 8.8 TUS	0:3.6.8-51.el8_8.11 fixed

platform-python-debug

RHEL 8	0:3.6.8-71.el8_10 fixed
RHEL 8.2 AUS	0:3.6.8-24.el8_2.4 fixed
RHEL 8.4 AUS	0:3.6.8-39.el8_4.7 fixed
RHEL 8.6 AUS	0:3.6.8-47.el8_6.9 fixed
RHEL 8.6 E4S	0:3.6.8-47.el8_6.9 fixed
RHEL 8.6 TUS	0:3.6.8-47.el8_6.9 fixed
RHEL 8.8 E4S	0:3.6.8-51.el8_8.11 fixed
RHEL 8.8 TUS	0:3.6.8-51.el8_8.11 fixed

platform-python-devel

RHEL 8	0:3.6.8-71.el8_10 fixed
RHEL 8.2 AUS	0:3.6.8-24.el8_2.4 fixed
RHEL 8.4 AUS	0:3.6.8-39.el8_4.7 fixed
RHEL 8.6 AUS	0:3.6.8-47.el8_6.9 fixed
RHEL 8.6 E4S	0:3.6.8-47.el8_6.9 fixed
RHEL 8.6 TUS	0:3.6.8-47.el8_6.9 fixed
RHEL 8.8 E4S	0:3.6.8-51.el8_8.11 fixed
RHEL 8.8 TUS	0:3.6.8-51.el8_8.11 fixed

python-unversioned-command

RHEL 9

0:3.9.21-2.el9_6.2

fixed

python3

RHEL 9

0:3.9.21-2.el9_6.2

fixed

python3-debug

RHEL 9

0:3.9.21-2.el9_6.2

fixed

python3-devel

RHEL 9

0:3.9.21-2.el9_6.2

fixed

python3-idle

RHEL 8	0:3.6.8-71.el8_10 fixed
RHEL 8.2 AUS	0:3.6.8-24.el8_2.4 fixed
RHEL 8.4 AUS	0:3.6.8-39.el8_4.7 fixed
RHEL 8.6 AUS	0:3.6.8-47.el8_6.9 fixed
RHEL 8.6 E4S	0:3.6.8-47.el8_6.9 fixed
RHEL 8.6 TUS	0:3.6.8-47.el8_6.9 fixed
RHEL 8.8 E4S	0:3.6.8-51.el8_8.11 fixed
RHEL 8.8 TUS	0:3.6.8-51.el8_8.11 fixed
RHEL 9	0:3.9.21-2.el9_6.2 fixed

python3-libs

RHEL 8	0:3.6.8-71.el8_10 fixed
RHEL 8.2 AUS	0:3.6.8-24.el8_2.4 fixed
RHEL 8.4 AUS	0:3.6.8-39.el8_4.7 fixed
RHEL 8.6 AUS	0:3.6.8-47.el8_6.9 fixed
RHEL 8.6 E4S	0:3.6.8-47.el8_6.9 fixed
RHEL 8.6 TUS	0:3.6.8-47.el8_6.9 fixed
RHEL 8.8 E4S	0:3.6.8-51.el8_8.11 fixed
RHEL 8.8 TUS	0:3.6.8-51.el8_8.11 fixed
RHEL 9	0:3.9.21-2.el9_6.2 fixed

python3-test

RHEL 8	0:3.6.8-71.el8_10 fixed
RHEL 8.2 AUS	0:3.6.8-24.el8_2.4 fixed
RHEL 8.4 AUS	0:3.6.8-39.el8_4.7 fixed
RHEL 8.6 AUS	0:3.6.8-47.el8_6.9 fixed
RHEL 8.6 E4S	0:3.6.8-47.el8_6.9 fixed
RHEL 8.6 TUS	0:3.6.8-47.el8_6.9 fixed
RHEL 8.8 E4S	0:3.6.8-51.el8_8.11 fixed
RHEL 8.8 TUS	0:3.6.8-51.el8_8.11 fixed
RHEL 9	0:3.9.21-2.el9_6.2 fixed

python3-tkinter

RHEL 8	0:3.6.8-71.el8_10 fixed
RHEL 8.2 AUS	0:3.6.8-24.el8_2.4 fixed
RHEL 8.4 AUS	0:3.6.8-39.el8_4.7 fixed
RHEL 8.6 AUS	0:3.6.8-47.el8_6.9 fixed
RHEL 8.6 E4S	0:3.6.8-47.el8_6.9 fixed
RHEL 8.6 TUS	0:3.6.8-47.el8_6.9 fixed
RHEL 8.8 E4S	0:3.6.8-51.el8_8.11 fixed
RHEL 8.8 TUS	0:3.6.8-51.el8_8.11 fixed
RHEL 9	0:3.9.21-2.el9_6.2 fixed

python3.11

RHEL 8	0:3.11.13-2.el8_10 fixed
RHEL 8.8 E4S	0:3.11.2-2.el8_8.5 fixed
RHEL 8.8 TUS	0:3.11.2-2.el8_8.5 fixed
RHEL 9	0:3.11.11-2.el9_6.2 fixed

python3.11-debug

RHEL 8	0:3.11.13-2.el8_10 fixed
RHEL 9	0:3.11.11-2.el9_6.2 fixed

python3.11-devel

RHEL 8	0:3.11.13-2.el8_10 fixed
RHEL 8.8 E4S	0:3.11.2-2.el8_8.5 fixed
RHEL 8.8 TUS	0:3.11.2-2.el8_8.5 fixed
RHEL 9	0:3.11.11-2.el9_6.2 fixed

python3.11-idle

RHEL 8	0:3.11.13-2.el8_10 fixed
RHEL 9	0:3.11.11-2.el9_6.2 fixed

python3.11-libs

RHEL 8	0:3.11.13-2.el8_10 fixed
RHEL 8.8 E4S	0:3.11.2-2.el8_8.5 fixed
RHEL 8.8 TUS	0:3.11.2-2.el8_8.5 fixed
RHEL 9	0:3.11.11-2.el9_6.2 fixed

python3.11-rpm-macros

RHEL 8	0:3.11.13-2.el8_10 fixed
RHEL 8.8 E4S	0:3.11.2-2.el8_8.5 fixed
RHEL 8.8 TUS	0:3.11.2-2.el8_8.5 fixed

python3.11-test

RHEL 8	0:3.11.13-2.el8_10 fixed
RHEL 9	0:3.11.11-2.el9_6.2 fixed

python3.11-tkinter

RHEL 8	0:3.11.13-2.el8_10 fixed
RHEL 8.8 E4S	0:3.11.2-2.el8_8.5 fixed
RHEL 8.8 TUS	0:3.11.2-2.el8_8.5 fixed
RHEL 9	0:3.11.11-2.el9_6.2 fixed

python3.12

RHEL 8	0:3.12.11-2.el8_10 fixed
RHEL 9	0:3.12.9-1.el9_6.2 fixed

python3.12-debug

RHEL 8	0:3.12.11-2.el8_10 fixed
RHEL 9	0:3.12.9-1.el9_6.2 fixed

python3.12-devel

RHEL 8	0:3.12.11-2.el8_10 fixed
RHEL 9	0:3.12.9-1.el9_6.2 fixed

python3.12-idle

RHEL 8	0:3.12.11-2.el8_10 fixed
RHEL 9	0:3.12.9-1.el9_6.2 fixed

python3.12-libs

RHEL 8	0:3.12.11-2.el8_10 fixed
RHEL 9	0:3.12.9-1.el9_6.2 fixed

python3.12-rpm-macros

RHEL 8

0:3.12.11-2.el8_10

fixed

python3.12-test

RHEL 8	0:3.12.11-2.el8_10 fixed
RHEL 9	0:3.12.9-1.el9_6.2 fixed

python3.12-tkinter

RHEL 8	0:3.12.11-2.el8_10 fixed
RHEL 9	0:3.12.9-1.el9_6.2 fixed

Common Weakness Enumeration

CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')
The program contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.

References

https://gist.github.com/sethmlarson/1716ac5b82b73dbcbf23ad2eff8b33e1

https://github.com/python/cpython/commit/57f5981d6260ed21266e0c26951b8564cc252bc2

https://github.com/python/cpython/commit/7040aa54f14676938970e10c5f74ea93cd56aa38

https://github.com/python/cpython/commit/73f03e4808206f71eb6b92c579505a220942ef19

https://github.com/python/cpython/commit/b4ec17488eedec36d3c05fec127df71c0071f6cb

https://github.com/python/cpython/commit/c9d9f78feb1467e73fd29356c040bde1c104f29f

https://github.com/python/cpython/commit/cdae923ffe187d6ef916c0f665a31249619193fe

https://github.com/python/cpython/commit/fbc2a0ca9ac8aff6887f8ddf79b87b4510277227

https://github.com/python/cpython/issues/130577

https://github.com/python/cpython/pull/137027

https://mail.python.org/archives/list/security-announce@python.org/thread/ZULLF3IZ726XP5EY7XJ7YIN3K5MDYR2D/

http://www.openwall.com/lists/oss-security/2025/07/28/1

http://www.openwall.com/lists/oss-security/2025/07/28/2