CVE-2024-6923

Updated: 2024-08-29 02:52:04.680388

Description:

There is a MEDIUM severity vulnerability affecting CPython. The email module didn’t properly quote newlines for email headers when serializing an email message allowing for header injection when an email is serialized.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x NONE 0
CVSS Version 3.x MEDIUM 6.8

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

AlmaLinux 9.2 ESU python3 3.9.16 6.8 MEDIUM Released CLSA-2024:1726059010 2024-09-11 12:13:04
CentOS 6 ELS python 2.6.6 6.8 MEDIUM Ignored 2024-08-29 12:10:09
CentOS 7 ELS python 2.7.5 6.8 MEDIUM Ignored 2024-08-29 12:10:10
CentOS 8.4 ELS python2 2.7.18 6.8 MEDIUM Not Vulnerable 2024-09-25 12:31:10
CentOS 8.4 ELS python3 3.6.8 6.8 MEDIUM Released CLSA-2024:1726058763 2024-09-11 12:13:06
CentOS 8.5 ELS python2 2.7.18 6.8 MEDIUM Not Vulnerable 2024-09-25 12:31:09
CentOS 8.5 ELS python3 3.6.8 6.8 MEDIUM Released CLSA-2024:1726058773 2024-09-11 12:13:06
CentOS Stream 8 ELS python2 2.7.18 6.8 MEDIUM Not Vulnerable 2024-09-25 12:31:09
CloudLinux 6 ELS python 2.6.6 6.8 MEDIUM Ignored 2024-08-29 12:10:11
CloudLinux 7 ELS python 2.7.5 6.8 MEDIUM Ignored 2024-08-29 05:23:12
Total: 15