Количество 17
Количество 17
ELSA-2026-2128
ELSA-2026-2128: python3 security update (MODERATE)
CVE-2025-15366
The imaplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters.
CVE-2025-15366
The imaplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters.
CVE-2025-15366
The imaplib module, when passed a user-controlled command, can have ad ...
GHSA-4c67-8q63-xrxq
The imaplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters.
CVE-2025-15367
The poplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters.
CVE-2025-15367
The poplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters.
CVE-2025-15367
The poplib module, when passed a user-controlled command, can have add ...
GHSA-g82h-mgfp-jx8g
The poplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters.
CVE-2026-1299
The email module, specifically the "BytesGenerator" class, didn’t properly quote newlines for email headers when serializing an email message allowing for header injection when an email is serialized. This is only applicable if using "LiteralHeader" writing headers that don't respect email folding rules, the new behavior will reject the incorrectly folded headers in "BytesGenerator".
CVE-2026-1299
The email module, specifically the "BytesGenerator" class, didn’t properly quote newlines for email headers when serializing an email message allowing for header injection when an email is serialized. This is only applicable if using "LiteralHeader" writing headers that don't respect email folding rules, the new behavior will reject the incorrectly folded headers in "BytesGenerator".
CVE-2026-1299
The email module, specifically the "BytesGenerator" class, didn\u2019 ...
CVE-2026-0865
User-controlled header names and values containing newlines can allow injecting HTTP headers.
CVE-2026-0865
User-controlled header names and values containing newlines can allow injecting HTTP headers.
CVE-2026-0865
User-controlled header names and values containing newlines can allow ...
GHSA-jh94-8q48-f3m3
The email module, specifically the "BytesGenerator" class, didn’t properly quote newlines for email headers when serializing an email message allowing for header injection when an email is serialized. This is only applicable if using "LiteralHeader" writing headers that don't respect email folding rules, the new behavior will reject the incorrectly folded headers in "BytesGenerator".
GHSA-5mc7-p6pj-r3f5
User-controlled header names and values containing newlines can allow injecting HTTP headers.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| ELSA-2026-2128 ELSA-2026-2128: python3 security update (MODERATE) | 6 дней назад | ||
 | CVE-2025-15366 The imaplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters. | 0% Низкий | 21 день назад | |
 | CVE-2025-15366 The imaplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters. | 0% Низкий | 21 день назад | |
| CVE-2025-15366 The imaplib module, when passed a user-controlled command, can have ad ... | 0% Низкий | 21 день назад | |
| GHSA-4c67-8q63-xrxq The imaplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters. | 0% Низкий | 21 день назад | |
| CVE-2025-15367 The poplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters. | 0% Низкий | 21 день назад | |
| CVE-2025-15367 The poplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters. | 0% Низкий | 21 день назад | |
| CVE-2025-15367 The poplib module, when passed a user-controlled command, can have add ... | 0% Низкий | 21 день назад | |
| GHSA-g82h-mgfp-jx8g The poplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters. | 0% Низкий | 21 день назад | |
| CVE-2026-1299 The email module, specifically the "BytesGenerator" class, didn’t properly quote newlines for email headers when serializing an email message allowing for header injection when an email is serialized. This is only applicable if using "LiteralHeader" writing headers that don't respect email folding rules, the new behavior will reject the incorrectly folded headers in "BytesGenerator". | 0% Низкий | 18 дней назад | |
| CVE-2026-1299 The email module, specifically the "BytesGenerator" class, didn’t properly quote newlines for email headers when serializing an email message allowing for header injection when an email is serialized. This is only applicable if using "LiteralHeader" writing headers that don't respect email folding rules, the new behavior will reject the incorrectly folded headers in "BytesGenerator". | 0% Низкий | 18 дней назад | |
| CVE-2026-1299 The email module, specifically the "BytesGenerator" class, didn\u2019 ... | 0% Низкий | 18 дней назад | |
| CVE-2026-0865 User-controlled header names and values containing newlines can allow injecting HTTP headers. | 0% Низкий | 21 день назад | |
| CVE-2026-0865 User-controlled header names and values containing newlines can allow injecting HTTP headers. | 0% Низкий | 21 день назад | |
| CVE-2026-0865 User-controlled header names and values containing newlines can allow ... | 0% Низкий | 21 день назад | |
| GHSA-jh94-8q48-f3m3 The email module, specifically the "BytesGenerator" class, didn’t properly quote newlines for email headers when serializing an email message allowing for header injection when an email is serialized. This is only applicable if using "LiteralHeader" writing headers that don't respect email folding rules, the new behavior will reject the incorrectly folded headers in "BytesGenerator". | 0% Низкий | 18 дней назад | |
| GHSA-5mc7-p6pj-r3f5 User-controlled header names and values containing newlines can allow injecting HTTP headers. | 0% Низкий | 21 день назад |
Уязвимостей на страницу