The Python project has released new versions across all supported branches to address a critical security vulnerability (CVE-2025-4517, CVSS 9.4/10). This vulnerability impacts core components of the Python runtime and could lead to unexpected behavior or potential exploitation in certain environments.
The different versions containing the fix are:
Tanzu Application Catalog promptly built, tested, and published the updated container images across all supported platforms in under an hour after the official release, ensuring users had immediate access to the fixed version.
While many other vendors and registries are still distributing vulnerable images at the time of this writing, Bitnami Open Source users, Bitnami Premium and Tanzu Application Catalog customers were able to upgrade their installations promptly to mitigate the risk associated with this vulnerability.