stable

python3.14-3.14.2-1.fc42

FEDORA-2025-d5dffbf048 created by churchyard 4 months ago for Fedora 42

This is the second maintenance release of Python 3.14

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2025-d5dffbf048

This update has been submitted for testing by churchyard.

4 months ago

This update's test gating status has been changed to 'ignored'.

4 months ago

churchyard edited this update.

4 months ago

This update has been pushed to testing.

4 months ago

churchyard edited this update.

4 months ago

This update has been submitted for stable by bodhi.

4 months ago
User Icon lbalhar commented & provided feedback 4 months ago
karma

All CVE fixes verified.

BZ#2402875 CVE-2025-8291 python3.14: Python zipfile End of Central Directory (EOCD) Locator record offset not checked [fedora-42]
BZ#2413058 CVE-2025-6075 python3.14: Quadratic complexity in os.path.expandvars() with user-controlled template [fedora-all]
BZ#2421620 CVE-2025-12084 python3.14: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service [fedora-42]

This update has been pushed to stable.

4 months ago

Please log in to add feedback.

Metadata
Type
security
Severity
medium
Karma
1
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-2
Stable by Karma
2
Stable by Time
7 days
Dates
submitted
4 months ago
in testing
4 months ago
in stable
4 months ago
modified
4 months ago
approved
4 months ago
Builds
1
python3.14-3.14.2-1.fc42
BZ#2402875 CVE-2025-8291 python3.14: Python zipfile End of Central Directory (EOCD) Locator record offset not checked [fedora-42]
0
1
BZ#2413058 CVE-2025-6075 python3.14: Quadratic complexity in os.path.expandvars() with user-controlled template [fedora-all]
0
1
BZ#2421620 CVE-2025-12084 python3.14: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service [fedora-42]
0
1
python3.14-3.14.2-1.fc42

Automated Test Results

Copyright © 2007-2026 Red Hat, Inc. and others.

Running bodhi-server 25.11.3 on bodhi-web-21-hcnm2.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy