vulnerability

Ubuntu: USN-7570-1 (CVE-2025-4516): Python vulnerabilities

Try Surface Command
Back to search
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
May 15, 2025
Added
Jun 17, 2025
Modified
Oct 24, 2025

Description

There is an issue in CPython when using `bytes.decode("unicode_escape", error="ignore|replace")`. If you are not using the "unicode_escape" encoding or an error handler your usage is not affected. To work-around this issue you may stop using the error= handler and instead wrap the bytes.decode() call in a try-except catching the DecodeError.

Solutions

ubuntu-pro-upgrade-libpython3-10ubuntu-pro-upgrade-libpython3-10-minimalubuntu-pro-upgrade-libpython3-11ubuntu-pro-upgrade-libpython3-11-minimalubuntu-pro-upgrade-libpython3-12-minimalubuntu-pro-upgrade-libpython3-12t64ubuntu-pro-upgrade-libpython3-13ubuntu-pro-upgrade-libpython3-13-minimalubuntu-pro-upgrade-libpython3-6ubuntu-pro-upgrade-libpython3-6-minimalubuntu-pro-upgrade-libpython3-7ubuntu-pro-upgrade-libpython3-7-minimalubuntu-pro-upgrade-libpython3-8ubuntu-pro-upgrade-libpython3-8-minimalubuntu-pro-upgrade-libpython3-9ubuntu-pro-upgrade-libpython3-9-minimalubuntu-pro-upgrade-python3-10ubuntu-pro-upgrade-python3-10-minimalubuntu-pro-upgrade-python3-11ubuntu-pro-upgrade-python3-11-minimalubuntu-pro-upgrade-python3-12ubuntu-pro-upgrade-python3-12-minimalubuntu-pro-upgrade-python3-13ubuntu-pro-upgrade-python3-13-minimalubuntu-pro-upgrade-python3-6ubuntu-pro-upgrade-python3-6-minimalubuntu-pro-upgrade-python3-7ubuntu-pro-upgrade-python3-7-minimalubuntu-pro-upgrade-python3-8ubuntu-pro-upgrade-python3-8-minimalubuntu-pro-upgrade-python3-9ubuntu-pro-upgrade-python3-9-minimal

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today