ELSA-2026-36315

ELSA-2026-36315 - python3.14-pip security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2026-07-07

Description


[25.2-5]
- Fix gating plan
- removed unnecessary older VERSION= tests
- removed bootstrap test
- fix pip_install_upgrade to run pip-3.14
- fix bash completion + remove unused metadata file

[25.2-4]
- Security fix for CVE-2026-8643: path traversal in wheel entry points


Related CVEs


CVE-2026-8643

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 9 (aarch64) python3.14-pip-25.2-3.el9_8.5.src.rpm868b0472193ced9b44d80e173d923f5679ebc3cd868de525ec8348976bf37993-ol9_aarch64_appstream
python3.14-pip-25.2-3.el9_8.5.noarch.rpm1eb69412d9c3951d3cf4952a6af3b65496687c5dbfa5c0a53fa6da8fa8d0ecb9-ol9_aarch64_appstream
python3.14-pip-wheel-25.2-3.el9_8.5.noarch.rpm03ca84d9e51f1ace8025c189ac0d59bbc333622237c4f8d02a0b256ef139e9a8-ol9_aarch64_appstream
Oracle Linux 9 (x86_64) python3.14-pip-25.2-3.el9_8.5.src.rpm868b0472193ced9b44d80e173d923f5679ebc3cd868de525ec8348976bf37993-ol9_x86_64_appstream
python3.14-pip-25.2-3.el9_8.5.noarch.rpm1eb69412d9c3951d3cf4952a6af3b65496687c5dbfa5c0a53fa6da8fa8d0ecb9-ol9_x86_64_appstream
python3.14-pip-wheel-25.2-3.el9_8.5.noarch.rpm03ca84d9e51f1ace8025c189ac0d59bbc333622237c4f8d02a0b256ef139e9a8-ol9_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete