AZL-75032

See a problem?
Import Source
https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-75032.json
JSON Data
https://api.test.osv.dev/v1/vulns/AZL-75032
Upstream
Published
2026-01-20T22:15:52Z
Modified
2026-04-01T05:22:24.878097Z
Summary
CVE-2026-0865 affecting package python3 for versions less than 3.12.9-8
Details

User-controlled header names and values containing newlines can allow injecting HTTP headers.

References

Affected packages

Azure Linux:3 / python3

Package

Name
python3
Purl
pkg:rpm/azure-linux/python3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.12.9-8

Database specific

source 
"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-75032.json"