Threats Tagged 'cve-2026-3644'

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * cpython: wsgiref.headers.Headers allows header newline injection in Python (CVE-2026-0865) * cpython: CPython: Logging Bypass in Legacy .pyc File Handling (CVE-2026-2297) * cpython: Incomplete control character validation in http.cookies (CVE-2026-3644) * cpython: Stack overflow parsing XML with deeply nested DTD content models (CVE-2026-4224) * python: Python: Command-line option injection in webbrowser.open() via crafted URLs (CVE-2026-4519) * python: Python: HTTP header injection via CR/LF in proxy tunnel headers (CVE-2026-1502) * python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules (CVE-2026-6100) * python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API (CVE-2026-4786) * python: Python: Information disclosure and arbitrary code execution via remote debugging with a malicious process. (CVE-2026-5713) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * cpython: wsgiref.headers.Headers allows header newline injection in Python (CVE-2026-0865) * cpython: CPython: Logging Bypass in Legacy .pyc File Handling (CVE-2026-2297) * cpython: Incomplete control character validation in http.cookies (CVE-2026-3644) * cpython: Stack overflow parsing XML with deeply nested DTD content models (CVE-2026-4224) * python: Python: Command-line option injection in webbrowser.open() via crafted URLs (CVE-2026-4519) * python: Python: HTTP header injection via CR/LF in proxy tunnel headers (CVE-2026-1502) * python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules (CVE-2026-6100) * python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API (CVE-2026-4786) * python: Python: Information disclosure and arbitrary code execution via remote debugging with a malicious process. (CVE-2026-5713) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

This update includes the following RPMs: python3.13: * python3.13-3.13.13-1.hum1 (aarch64, x86_64) * python3.13-debug-3.13.13-1.hum1 (aarch64, x86_64) * python3.13-devel-3.13.13-1.hum1 (aarch64, x86_64) * python3.13-freethreading-3.13.13-1.hum1 (aarch64, x86_64) * python3.13-freethreading-debug-3.13.13-1.hum1 (aarch64, x86_64) * python3.13-idle-3.13.13-1.hum1 (aarch64, x86_64) * python3.13-libs-3.13.13-1.hum1 (aarch64, x86_64) * python3.13-test-3.13.13-1.hum1 (aarch64, x86_64) * python3.13-tkinter-3.13.13-1.hum1 (aarch64, x86_64) * python3.13-3.13.13-1.hum1.src (src)

CVE-2026-3644 is a medium severity vulnerability in the Python Software Foundation's CPython implementation. It arises from an incomplete fix for a previous vulnerability (CVE-2026-0672) related to control character handling in http.cookies. Morsel. Specifically, certain methods such as Morsel.update(), the |= operator, and unpickling paths were not properly patched, allowing control characters to bypass input validation. Additionally, the BaseCookie.js_output() method lacked the output validation present in BaseCookie.output(). This could lead to improper handling of cookie data.