ELSA-2026-36193

ELSA-2026-36193 - python3.14-pip security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2026-07-16

Description


[25.2-5]
- Fix gating plan
- removed unnecessary older VERSION= tests
- removed bootstrap test
- fix pip_install_upgrade to run pip-3.14
- fix bash completion + remove unused metadata file

[25.2-4]
- Security fix for CVE-2026-8643: path traversal in wheel entry points


Related CVEs


CVE-2026-8643

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 10 (aarch64) python3.14-pip-25.2-3.el10_2.5.src.rpm2ffbbb234e989ac31cc84ba661e46872db3a688d817e589280f82afc4219b407-ol10_aarch64_appstream
python3.14-pip-25.2-3.el10_2.5.noarch.rpm1fa9a9c2cfe7d6c9833eadd772276132d5ee8f7de42d9e8ea4720c540ffd4ab3-ol10_aarch64_appstream
python3.14-pip-wheel-25.2-3.el10_2.5.noarch.rpm25ccb25b02094b6a559c00730d3d8997e2f3cffc87d802a39a4a1144f710db3f-ol10_aarch64_appstream
Oracle Linux 10 (x86_64) python3.14-pip-25.2-3.el10_2.5.src.rpm2ffbbb234e989ac31cc84ba661e46872db3a688d817e589280f82afc4219b407-ol10_x86_64_appstream
python3.14-pip-25.2-3.el10_2.5.noarch.rpm1fa9a9c2cfe7d6c9833eadd772276132d5ee8f7de42d9e8ea4720c540ffd4ab3-ol10_x86_64_appstream
python3.14-pip-wheel-25.2-3.el10_2.5.noarch.rpm25ccb25b02094b6a559c00730d3d8997e2f3cffc87d802a39a4a1144f710db3f-ol10_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete