AZL-47385

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-47385.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-47385

Upstream

CVE-2024-6923

Published

2024-08-01T14:15:03Z

Modified

2026-04-01T05:17:00.926389Z

Summary

CVE-2024-6923 affecting package tensorflow for versions less than 2.16.1-9

Details

There is a MEDIUM severity vulnerability affecting CPython.

The email module didn’t properly quote newlines for email headers when serializing an email message allowing for header injection when an email is serialized.

References

https://nvd.nist.gov/vuln/detail/CVE-2024-6923

Affected packages

Azure Linux:3 / tensorflow

Package

Name: tensorflow
Purl: pkg:rpm/azure-linux/tensorflow

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.16.1-9

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-47385.json"