Amazon Linux 2023 Security Advisory: ALAS2023-2025-1056
Advisory Released Date: 2025-07-10
Advisory Updated Date: 2025-07-10
Severity:
Medium
Issue Overview:
The html.parser.HTMLParser class had worse-case quadratic complexity when processing certain crafted malformed inputs potentially leading to amplified denial-of-service. (CVE-2025-6069)
Affected Packages:
python3.12
Issue Correction:
Run dnf update python3.12 --releasever 2023.8.20250707 to update your system.
New Packages:
aarch64:
python3.12-tkinter-3.12.11-2.amzn2023.0.1.aarch64
python3.12-3.12.11-2.amzn2023.0.1.aarch64
python3.12-debug-3.12.11-2.amzn2023.0.1.aarch64
python3.12-devel-3.12.11-2.amzn2023.0.1.aarch64
python3.12-idle-3.12.11-2.amzn2023.0.1.aarch64
python3.12-debugsource-3.12.11-2.amzn2023.0.1.aarch64
python3.12-debuginfo-3.12.11-2.amzn2023.0.1.aarch64
python3.12-libs-3.12.11-2.amzn2023.0.1.aarch64
python3.12-test-3.12.11-2.amzn2023.0.1.aarch64
src:
python3.12-3.12.11-2.amzn2023.0.1.src
x86_64:
python3.12-debugsource-3.12.11-2.amzn2023.0.1.x86_64
python3.12-3.12.11-2.amzn2023.0.1.x86_64
python3.12-tkinter-3.12.11-2.amzn2023.0.1.x86_64
python3.12-idle-3.12.11-2.amzn2023.0.1.x86_64
python3.12-devel-3.12.11-2.amzn2023.0.1.x86_64
python3.12-debug-3.12.11-2.amzn2023.0.1.x86_64
python3.12-debuginfo-3.12.11-2.amzn2023.0.1.x86_64
python3.12-libs-3.12.11-2.amzn2023.0.1.x86_64
python3.12-test-3.12.11-2.amzn2023.0.1.x86_64