AZL-47346

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-47346.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-47346

Upstream

CVE-2024-6923

Published

2024-08-01T14:15:03Z

Modified

2026-04-01T05:17:00.485738Z

Summary

CVE-2024-6923 affecting package python3 for versions less than 3.9.19-8

Details

There is a MEDIUM severity vulnerability affecting CPython.

The email module didn’t properly quote newlines for email headers when serializing an email message allowing for header injection when an email is serialized.

References

https://nvd.nist.gov/vuln/detail/CVE-2024-6923

Affected packages

Azure Linux:2 / python3

Package

Name: python3
Purl: pkg:rpm/azure-linux/python3

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.9.19-8

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-47346.json"