CVE-2025-1795

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-1795

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-1795.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-1795

Aliases

Downstream

AZL-57675

CLSA-2026-1776330599

CLSA-2026-1778129970

CLSA-2026-1778233301

DEBIAN-CVE-2025-1795

DLA-4087-1

DLA-4354-1

ECHO-27f5-2176-4abe

MGASA-2025-0280

MINI-gqgw-2f83-qcpf

OESA-2025-2290

OESA-2025-2302

OESA-2025-2303

OESA-2025-2304

OESA-2025-2305

OESA-2025-2306

SUSE-SU-2025:02074-1

SUSE-SU-2025:0883-1

SUSE-SU-2025:0981-1

SUSE-SU-2025:0982-1

SUSE-SU-2025:20154-1

SUSE-SU-2025:20374-1

UBUNTU-CVE-2025-1795

USN-7570-1

openSUSE-SU-2025:14872-1

openSUSE-SU-2025:14873-1

openSUSE-SU-2025:14885-1

Related

Published

2025-02-28T18:59:31.784Z

Modified

2026-05-18T05:59:11.620811568Z

Severity

2.3 (Low) CVSS_V4 - CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N CVSS Calculator

Summary

Mishandling of comma during folding and unicode-encoding of email headers

Details

During an address list folding when a separating comma ends up on a folded line and that line is to be unicode-encoded then the separator itself is also unicode-encoded. Expected behavior is that the separating comma remains a plan comma. This can result in the address header being misinterpreted by some mail servers.

Database specific

{
    "cna_assigner": "PSF",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/1xxx/CVE-2025-1795.json"
}

References

Affected packages

Git / github.com/python/cpython

Affected ranges

Type: GIT
Repo: https://github.com/python/cpython
Events: Introduced

2268289a47c6e3c9a220b53697f9480ec390466f

Fixed

076d169ebbe59f7035eaa28d33d517bcb375f342

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-1795.json"