vulnerability
Ubuntu: (Multiple Advisories) (CVE-2025-6075): Python vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:S/C:N/I:N/A:C) | Oct 31, 2025 | Nov 25, 2025 | Feb 5, 2026 |
Severity
5
CVSS
(AV:L/AC:L/Au:S/C:N/I:N/A:C)
Published
Oct 31, 2025
Added
Nov 25, 2025
Modified
Feb 5, 2026
Description
It was discovered that Python inefficiently handled expanding system
environment variables. An attacker could possibly use this issue to cause
Python to consume excessive resources, leading to a denial of service.
(CVE-2025-6075)
Caleb Brown discovered that Python incorrectly handled the ZIP64 End of
Central Directory (EOCD) Locator record offset value. An attacker could
possibly use this issue to obfuscate malicious content. (CVE-2025-8291)
Solutions
ubuntu-pro-upgrade-idle-python3-11ubuntu-pro-upgrade-libpython3-10ubuntu-pro-upgrade-libpython3-12t64ubuntu-pro-upgrade-libpython3-13ubuntu-pro-upgrade-libpython3-4ubuntu-pro-upgrade-libpython3-5ubuntu-pro-upgrade-libpython3-6ubuntu-pro-upgrade-libpython3-7ubuntu-pro-upgrade-libpython3-8ubuntu-pro-upgrade-libpython3-9ubuntu-pro-upgrade-python3-10ubuntu-pro-upgrade-python3-11ubuntu-pro-upgrade-python3-12ubuntu-pro-upgrade-python3-13ubuntu-pro-upgrade-python3-4ubuntu-pro-upgrade-python3-5ubuntu-pro-upgrade-python3-6ubuntu-pro-upgrade-python3-7ubuntu-pro-upgrade-python3-8ubuntu-pro-upgrade-python3-9
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.