{ "threat_severity" : "Moderate", "public_date" : "2026-04-10T17:54:44Z", "bugzilla" : { "description" : "python: Python: HTTP header injection via CR/LF in proxy tunnel headers", "id" : "2457409", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2457409" }, "cvss3" : { "cvss3_base_score" : "4.5", "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N", "status" : "verified" }, "cwe" : "CWE-93", "details" : [ "CR/LF bytes were not rejected by HTTP client proxy tunnel headers or host.", "A flaw was found in Python. This vulnerability allows for the injection of extra information into HTTP communication. Specifically, the system does not properly prevent special characters (carriage return and line feed) from being included in HTTP client proxy tunnel headers or host fields." ], "affected_release" : [ { "product_name" : "Red Hat Enterprise Linux 8", "release_date" : "2026-04-27T00:00:00Z", "advisory" : "RHSA-2026:10950", "cpe" : "cpe:/a:redhat:enterprise_linux:8", "package" : "python3.12-0:3.12.13-2.el8_10" }, { "product_name" : "Red Hat Hardened Images", "release_date" : "2026-04-23T00:00:00Z", "advisory" : "RHSA-2026:10117", "cpe" : "cpe:/a:redhat:hummingbird:1", "package" : "python3-13-main-3.13.13-1.1.hum1" }, { "product_name" : "Red Hat Hardened Images", "release_date" : "2026-04-17T00:00:00Z", "advisory" : "RHSA-2026:8822", "cpe" : "cpe:/a:redhat:hummingbird:1", "package" : "python3-11-main-3.11.15-4.hum1" }, { "product_name" : "Red Hat Hardened Images", "release_date" : "2026-04-17T00:00:00Z", "advisory" : "RHSA-2026:8824", "cpe" : "cpe:/a:redhat:hummingbird:1", "package" : "python3-12-main-3.12.13-3.hum1" }, { "product_name" : "Red Hat Hardened Images", "release_date" : "2026-04-21T00:00:00Z", "advisory" : "RHSA-2026:9228", "cpe" : "cpe:/a:redhat:hummingbird:1", "package" : "python3-14-main-3.14.4-2.hum1" } ], "package_state" : [ { "product_name" : "Red Hat Enterprise Linux 10", "fix_state" : "Fix deferred", "package_name" : "python3.12", "cpe" : "cpe:/o:redhat:enterprise_linux:10" }, { "product_name" : "Red Hat Enterprise Linux 10", "fix_state" : "Fix deferred", "package_name" : "python3.14", "cpe" : "cpe:/o:redhat:enterprise_linux:10" }, { "product_name" : "Red Hat Enterprise Linux 6", "fix_state" : "Fix deferred", "package_name" : "python", "cpe" : "cpe:/o:redhat:enterprise_linux:6" }, { "product_name" : "Red Hat Enterprise Linux 7", "fix_state" : "Fix deferred", "package_name" : "python", "cpe" : "cpe:/o:redhat:enterprise_linux:7" }, { "product_name" : "Red Hat Enterprise Linux 7", "fix_state" : "Fix deferred", "package_name" : "python3", "cpe" : "cpe:/o:redhat:enterprise_linux:7" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Fix deferred", "package_name" : "python3", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Fix deferred", "package_name" : "python3.11", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Fix deferred", "package_name" : "python36:3.6/python36", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Fix deferred", "package_name" : "python39-devel:3.9/python39", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Fix deferred", "package_name" : "python3.11", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Fix deferred", "package_name" : "python3.12", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Fix deferred", "package_name" : "python3.14", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Fix deferred", "package_name" : "python3.9", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux AI (RHEL AI) 3", "fix_state" : "Fix deferred", "package_name" : "redhat-user-workloads/bootc-cuda-aws-3-3", "cpe" : "cpe:/a:redhat:enterprise_linux_ai:3" }, { "product_name" : "Red Hat Enterprise Linux AI (RHEL AI) 3", "fix_state" : "Fix deferred", "package_name" : "redhat-user-workloads/bootc-cuda-azure-3-3", "cpe" : "cpe:/a:redhat:enterprise_linux_ai:3" }, { "product_name" : "Red Hat Enterprise Linux AI (RHEL AI) 3", "fix_state" : "Fix deferred", "package_name" : "redhat-user-workloads/bootc-cuda-gcp-3-3", "cpe" : "cpe:/a:redhat:enterprise_linux_ai:3" }, { "product_name" : "Red Hat Enterprise Linux AI (RHEL AI) 3", "fix_state" : "Fix deferred", "package_name" : "redhat-user-workloads/bootc-rocm-azure-3-3", "cpe" : "cpe:/a:redhat:enterprise_linux_ai:3" }, { "product_name" : "Red Hat Enterprise Linux AI (RHEL AI) 3", "fix_state" : "Fix deferred", "package_name" : "rhelai3/bootc-cuda-rhel9", "cpe" : "cpe:/a:redhat:enterprise_linux_ai:3" }, { "product_name" : "Red Hat Enterprise Linux AI (RHEL AI) 3", "fix_state" : "Fix deferred", "package_name" : "rhelai3/bootc-rocm-rhel9", "cpe" : "cpe:/a:redhat:enterprise_linux_ai:3" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2026-1502\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-1502\nhttps://github.com/python/cpython/commit/05ed7ce7ae9e17c23a04085b2539fe6d6d3cef69\nhttps://github.com/python/cpython/issues/146211\nhttps://github.com/python/cpython/pull/146212\nhttps://mail.python.org/archives/list/security-announce@python.org/thread/2IVPAEQWUJBCTQZEJEVTYCIKSMQPGRZ3/" ], "name" : "CVE-2026-1502", "mitigation" : { "value" : "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", "lang" : "en:us" }, "csaw" : false }