Updated: 2025-08-20 02:05:19.391135
Description:
There is a MEDIUM severity vulnerability affecting CPython. The email module didn’t properly quote newlines for email headers when serializing an email message allowing for header injection when an email is serialized.
| Links | NIST | CIRCL | RHEL | Ubuntu |
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | NONE | 0.0 |
| CVSS Version 3.x | MEDIUM | 6.8 |
| OS name | Project name | Version | Score | Severity | Status | Errata | Last updated | Statement |
|---|---|---|---|---|---|---|---|---|
| AlmaLinux 9.2 ESU | python3.11 | 3.11.2 | 6.8 | MEDIUM | Released | CLSA-2025:1741126677 | 2025-03-05 21:52:31 | |
| AlmaLinux 9.2 ESU | python3 | 3.9.16 | 6.8 | MEDIUM | Released | CLSA-2024:1726059010 | 2024-09-11 12:13:04 | |
| CentOS 6 ELS | python | 2.6.6 | 6.8 | MEDIUM | Ignored | 2024-08-29 12:10:09 | Ignored due to low severity | |
| CentOS 7 ELS | python | 2.7.5 | 6.8 | MEDIUM | Ignored | 2024-08-29 12:10:10 | Ignored due to low severity | |
| CentOS 8.4 ELS | python3 | 3.6.8 | 6.8 | MEDIUM | Released | CLSA-2024:1726058763 | 2024-09-11 12:13:06 | |
| CentOS 8.4 ELS | python2 | 2.7.18 | 6.8 | MEDIUM | Not Vulnerable | 2024-09-25 12:31:10 | ||
| CentOS 8.5 ELS | python2 | 2.7.18 | 6.8 | MEDIUM | Not Vulnerable | 2024-09-25 12:31:09 | ||
| CentOS 8.5 ELS | python3 | 3.6.8 | 6.8 | MEDIUM | Released | CLSA-2024:1726058773 | 2024-09-11 12:13:06 | |
| CentOS Stream 8 ELS | python2 | 2.7.18 | 6.8 | MEDIUM | Not Vulnerable | 2024-09-25 12:31:09 | ||
| CloudLinux 6 ELS | python | 2.6.6 | 6.8 | MEDIUM | Ignored | 2024-08-29 12:10:11 | Ignored due to low severity |