CVE-2025-8291

EUVD-2025-31917

07.10.2025, 18:16

The 'zipfile' module would not check the validity of the ZIP64 End of
Central Directory (EOCD) Locator record offset value would not be used to
locate the ZIP64 EOCD record, instead the ZIP64 EOCD record would be
assumed to be the previous record in the ZIP archive. This could be abused
to create ZIP archives that are handled differently by the 'zipfile' module
compared to other ZIP implementations.

Remediation maintains this behavior, but checks that the offset specified
in the ZIP64 EOCD Locator record matches the expected value.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
PSF	CNA	4.3 MEDIUM	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 31%

Early Detection

Affected products identified ahead of NVD analysis through intelligence sources.

Vendor	Product	Version	Source
python	cpython	𝑥 < 3.10.19	CNA
python	cpython	3.11.0 ≤ 𝑥 < 3.11.14	CNA
python	cpython	3.12.0 ≤ 𝑥 < 3.12.12	CNA
python	cpython	3.13.0 ≤ 𝑥 < 3.13.10	CNA
python	cpython	3.14.0 ≤ 𝑥 < 3.14.1	CNA

openSUSE / SLES Releases

openSUSE Product

Release

libpython2_7-1_0

suse enterprise server 12 SP3

2.7.18-28.134.1

fixed

libpython2_7-1_0-32bit

suse enterprise server 12 SP3

2.7.18-28.134.1

fixed

libpython3_10-1_0

suse enterprise server 15 SP4

3.10.19-150400.4.91.3

fixed

libpython3_11-1_0

suse enterprise desktop 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise desktop 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP7	3.11.14-150600.3.38.1 fixed

libpython3_12-1_0

suse enterprise desktop 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise sap 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise server 15 SP6	3.12.12-150600.3.37.1 fixed

libpython3_13-1_0

suse enterprise desktop 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise sap 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise server 15 SP7	3.13.9-150700.4.26.1 fixed

libpython3_4m1_0

suse enterprise server 12 SP3

3.4.10-25.163.1

fixed

libpython3_6m1_0

suse enterprise desktop 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.100.1 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.100.1 fixed
suse enterprise server 12 SP3	3.6.15-6.140.1 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.100.1 fixed

python

suse enterprise server 12 SP3

2.7.18-28.134.1

fixed

python-32bit

suse enterprise server 12 SP3

2.7.18-28.134.1

fixed

python-base

suse enterprise server 12 SP3

2.7.18-28.134.1

fixed

python-base-32bit

suse enterprise server 12 SP3

2.7.18-28.134.1

fixed

python-curses

suse enterprise server 12 SP3

2.7.18-28.134.1

fixed

python-demo

suse enterprise server 12 SP3

2.7.18-28.134.1

fixed

python-devel

suse enterprise server 12 SP3

2.7.18-28.134.1

fixed

python-doc

suse enterprise server 12 SP3

2.7.18-28.134.1

fixed

python-doc-pdf

suse enterprise server 12 SP3

2.7.18-28.134.1

fixed

python-gdbm

suse enterprise server 12 SP3

2.7.18-28.134.1

fixed

python-idle

suse enterprise server 12 SP3

2.7.18-28.134.1

fixed

python-tk

suse enterprise server 12 SP3

2.7.18-28.134.1

fixed

python-xml

suse enterprise server 12 SP3

2.7.18-28.134.1

fixed

python3

suse enterprise desktop 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.100.1 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.100.1 fixed
suse enterprise server 12 SP3	3.4.10-25.163.1 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.100.1 fixed

python3-base

suse enterprise desktop 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.100.1 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.100.1 fixed
suse enterprise server 12 SP3	3.4.10-25.163.1 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.100.1 fixed

python3-curses

suse enterprise desktop 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.100.1 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.100.1 fixed
suse enterprise server 12 SP3	3.4.10-25.163.1 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.100.1 fixed

python3-dbm

suse enterprise desktop 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.100.1 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.100.1 fixed

python3-devel

suse enterprise desktop 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.100.1 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.100.1 fixed

python3-idle

suse enterprise desktop 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.100.1 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.100.1 fixed

python3-tk

suse enterprise desktop 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.100.1 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.100.1 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.100.1 fixed

python3-tools

suse enterprise server 15 SP4

3.6.15-150300.10.100.1

fixed

python310

suse enterprise server 15 SP4

3.10.19-150400.4.91.3

fixed

python310-base

suse enterprise server 15 SP4

3.10.19-150400.4.91.3

fixed

python310-curses

suse enterprise server 15 SP4

3.10.19-150400.4.91.3

fixed

python310-dbm

suse enterprise server 15 SP4

3.10.19-150400.4.91.3

fixed

python310-devel

suse enterprise server 15 SP4

3.10.19-150400.4.91.3

fixed

python310-idle

suse enterprise server 15 SP4

3.10.19-150400.4.91.3

fixed

python310-tk

suse enterprise server 15 SP4

3.10.19-150400.4.91.3

fixed

python310-tools

suse enterprise server 15 SP4

3.10.19-150400.4.91.3

fixed

python311

suse enterprise desktop 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise desktop 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP7	3.11.14-150600.3.38.1 fixed

python311-base

suse enterprise desktop 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise desktop 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP7	3.11.14-150600.3.38.1 fixed

python311-curses

suse enterprise desktop 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise desktop 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP7	3.11.14-150600.3.38.1 fixed

python311-dbm

suse enterprise desktop 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise desktop 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP7	3.11.14-150600.3.38.1 fixed

python311-devel

suse enterprise desktop 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise desktop 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP7	3.11.14-150600.3.38.1 fixed

python311-doc

suse enterprise sap 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP5	3.11.14-150400.9.69.1 fixed

python311-doc-devhelp

suse enterprise sap 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP5	3.11.14-150400.9.69.1 fixed

python311-idle

suse enterprise desktop 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise desktop 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP7	3.11.14-150600.3.38.1 fixed

python311-tk

suse enterprise desktop 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise desktop 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP7	3.11.14-150600.3.38.1 fixed

python311-tools

suse enterprise desktop 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise desktop 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise sap 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise sap 15 SP7	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP4	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP5	3.11.14-150400.9.69.1 fixed
suse enterprise server 15 SP6	3.11.14-150600.3.38.1 fixed
suse enterprise server 15 SP7	3.11.14-150600.3.38.1 fixed

python312

suse enterprise desktop 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise sap 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise server 15 SP6	3.12.12-150600.3.37.1 fixed

python312-base

suse enterprise desktop 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise sap 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise server 15 SP6	3.12.12-150600.3.37.1 fixed

python312-curses

suse enterprise desktop 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise sap 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise server 15 SP6	3.12.12-150600.3.37.1 fixed

python312-dbm

suse enterprise desktop 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise sap 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise server 15 SP6	3.12.12-150600.3.37.1 fixed

python312-devel

suse enterprise desktop 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise sap 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise server 15 SP6	3.12.12-150600.3.37.1 fixed

python312-idle

suse enterprise desktop 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise sap 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise server 15 SP6	3.12.12-150600.3.37.1 fixed

python312-tk

suse enterprise desktop 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise sap 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise server 15 SP6	3.12.12-150600.3.37.1 fixed

python312-tools

suse enterprise desktop 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise sap 15 SP6	3.12.12-150600.3.37.1 fixed
suse enterprise server 15 SP6	3.12.12-150600.3.37.1 fixed

python313

suse enterprise desktop 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise sap 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise server 15 SP7	3.13.9-150700.4.26.1 fixed

python313-base

suse enterprise desktop 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise sap 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise server 15 SP7	3.13.9-150700.4.26.1 fixed

python313-curses

suse enterprise desktop 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise sap 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise server 15 SP7	3.13.9-150700.4.26.1 fixed

python313-dbm

suse enterprise desktop 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise sap 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise server 15 SP7	3.13.9-150700.4.26.1 fixed

python313-devel

suse enterprise desktop 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise sap 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise server 15 SP7	3.13.9-150700.4.26.1 fixed

python313-idle

suse enterprise desktop 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise sap 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise server 15 SP7	3.13.9-150700.4.26.1 fixed

python313-tk

suse enterprise desktop 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise sap 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise server 15 SP7	3.13.9-150700.4.26.1 fixed

python313-tools

suse enterprise desktop 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise sap 15 SP7	3.13.9-150700.4.26.1 fixed
suse enterprise server 15 SP7	3.13.9-150700.4.26.1 fixed

python36

suse enterprise server 12 SP3

3.6.15-6.140.1

fixed

python36-base

suse enterprise server 12 SP3

3.6.15-6.140.1

fixed

python36-curses

suse enterprise server 12 SP3

3.6.15-6.140.1

fixed

python36-dbm

suse enterprise server 12 SP3

3.6.15-6.140.1

fixed

python36-devel

suse enterprise server 12 SP3

3.6.15-6.140.1

fixed

python36-idle

suse enterprise server 12 SP3

3.6.15-6.140.1

fixed

python36-testsuite

suse enterprise server 12 SP3

3.6.15-6.140.1

fixed

python36-tk

suse enterprise server 12 SP3

3.6.15-6.140.1

fixed

python36-tools

suse enterprise server 12 SP3

3.6.15-6.140.1

fixed

Red Hat Enterprise Linux Releases

Red Hat Product

Release

python-unversioned-command

RHEL 9

0:3.9.25-2.el9_7

fixed

python3

RHEL 9

0:3.9.25-2.el9_7

fixed

python3-debug

RHEL 9

0:3.9.25-2.el9_7

fixed

python3-devel

RHEL 9

0:3.9.25-2.el9_7

fixed

python3-idle

RHEL 9

0:3.9.25-2.el9_7

fixed

python3-libs

RHEL 9

0:3.9.25-2.el9_7

fixed

python3-test

RHEL 9

0:3.9.25-2.el9_7

fixed

python3-tkinter

RHEL 9

0:3.9.25-2.el9_7

fixed

python3.12

RHEL 8	0:3.12.12-1.el8_10 fixed
RHEL 9	0:3.12.12-1.el9_7 fixed

python3.12-debug

RHEL 8	0:3.12.12-1.el8_10 fixed
RHEL 9	0:3.12.12-1.el9_7 fixed

python3.12-devel

RHEL 8	0:3.12.12-1.el8_10 fixed
RHEL 9	0:3.12.12-1.el9_7 fixed

python3.12-idle

RHEL 8	0:3.12.12-1.el8_10 fixed
RHEL 9	0:3.12.12-1.el9_7 fixed

python3.12-libs

RHEL 8	0:3.12.12-1.el8_10 fixed
RHEL 9	0:3.12.12-1.el9_7 fixed

python3.12-rpm-macros

RHEL 8

0:3.12.12-1.el8_10

fixed

python3.12-test

RHEL 8	0:3.12.12-1.el8_10 fixed
RHEL 9	0:3.12.12-1.el9_7 fixed

python3.12-tkinter

RHEL 8	0:3.12.12-1.el8_10 fixed
RHEL 9	0:3.12.12-1.el9_7 fixed

Common Weakness Enumeration

CWE-1285 - Improper Validation of Specified Index, Position, or Offset in Input
The product receives input that is expected to specify an index, position, or offset into an indexable resource such as a buffer or file, but it does not validate or incorrectly validates that the specified index/position/offset has the required properties.

References

https://github.com/python/cpython/commit/162997bb70e067668c039700141770687bc8f267

https://github.com/python/cpython/commit/1d29afb0d6218aa8fb5e1e4a6133a4778d89bb46

https://github.com/python/cpython/commit/333d4a6f4967d3ace91492a39ededbcf3faa76a6

https://github.com/python/cpython/commit/76437ac248ad8ca44e9bf697b02b1e2241df2196

https://github.com/python/cpython/commit/8392b2f0d35678407d9ce7d95655a5b77de161b4

https://github.com/python/cpython/commit/bca11ae7d575d87ed93f5dd6a313be6246e3e388

https://github.com/python/cpython/commit/d11e69d6203080e3ec450446bfed0516727b85c3

https://github.com/python/cpython/issues/139700

https://github.com/python/cpython/pull/139702

https://mail.python.org/archives/list/security-announce@python.org/thread/QECOPWMTH4VPPJAXAH2BGTA4XADOP62G/

https://github.com/google/security-research/security/advisories/GHSA-hhv7-p4pg-wm6p

https://github.com/psf/advisory-database/blob/main/advisories/python/PSF-2025-12.json