RHSA-2026:6253MediumCVSS 7.1
Red Hat Security Advisory: python3.11 security update
🔗 CVE IDs covered (4)
📋 Description
CVE-2025-15366 — cpython: IMAP command injection in user-controlled commands CVE-2025-15367 — cpython: POP3 command injection in user-controlled commands CVE-2026-0865 — cpython: wsgiref.headers.Headers allows header newline injection in Python CVE-2026-1299 — cpython: email header injection due to unquoted newlines
🔗 References (7)
- selfhttps://access.redhat.com/errata/RHSA-2026:6253
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2431367
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2431368
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2431373
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2432437
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_6253.json