vulnerability
Alma Linux: CVE-2020-26116: Moderate: python27:2.7 security and bug fix update (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:N/AC:L/Au:N/C:P/I:P/A:N) | Sep 27, 2020 | May 4, 2022 | Aug 11, 2025 |
Severity
6
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:N)
Published
Sep 27, 2020
Added
May 4, 2022
Modified
Aug 11, 2025
Description
http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request.
Solutions
alma-upgrade-python-psycopg2-docalma-upgrade-python-sqlalchemy-docalma-upgrade-python2-attrsalma-upgrade-python2-backportsalma-upgrade-python2-backports-ssl_match_hostnamealma-upgrade-python2-chardetalma-upgrade-python2-coveragealma-upgrade-python2-cythonalma-upgrade-python2-dnsalma-upgrade-python2-docsalma-upgrade-python2-docs-infoalma-upgrade-python2-docutilsalma-upgrade-python2-funcsigsalma-upgrade-python2-idnaalma-upgrade-python2-ipaddressalma-upgrade-python2-markupsafealma-upgrade-python2-mockalma-upgrade-python2-numpyalma-upgrade-python2-numpy-docalma-upgrade-python2-numpy-f2pyalma-upgrade-python2-pluggyalma-upgrade-python2-psycopg2alma-upgrade-python2-psycopg2-debugalma-upgrade-python2-psycopg2-testsalma-upgrade-python2-pyalma-upgrade-python2-pymysqlalma-upgrade-python2-pysocksalma-upgrade-python2-pytestalma-upgrade-python2-pytest-mockalma-upgrade-python2-pytzalma-upgrade-python2-pyyamlalma-upgrade-python2-requestsalma-upgrade-python2-rpm-macrosalma-upgrade-python2-setuptoolsalma-upgrade-python2-setuptools-wheelalma-upgrade-python2-setuptools_scmalma-upgrade-python2-sixalma-upgrade-python2-sqlalchemyalma-upgrade-python2-urllib3alma-upgrade-python38-asn1cryptoalma-upgrade-python38-cffialma-upgrade-python38-chardetalma-upgrade-python38-cryptographyalma-upgrade-python38-cythonalma-upgrade-python38-idnaalma-upgrade-python38-markupsafealma-upgrade-python38-mod_wsgialma-upgrade-python38-plyalma-upgrade-python38-psycopg2alma-upgrade-python38-psycopg2-docalma-upgrade-python38-psycopg2-testsalma-upgrade-python38-pycparseralma-upgrade-python38-pymysqlalma-upgrade-python38-pysocksalma-upgrade-python38-pytzalma-upgrade-python38-requestsalma-upgrade-python38-scipyalma-upgrade-python38-six
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.