Low severityOSV Advisory· Published Feb 28, 2025· Updated Apr 15, 2026
CVE-2025-1795
CVE-2025-1795
Description
During an address list folding when a separating comma ends up on a folded line and that line is to be unicode-encoded then the separator itself is also unicode-encoded. Expected behavior is that the separating comma remains a plan comma. This can result in the address header being misinterpreted by some mail servers.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
41- Range: v0.9.8, v0.9.9, v1.0.1, …
- osv-coords40 versionspkg:apk/chainguard/python-3.10pkg:apk/chainguard/python-3.10-basepkg:apk/chainguard/python-3.10-base-devpkg:apk/chainguard/python-3.10-devpkg:apk/chainguard/python-3.10-docpkg:apk/chainguard/python-3.9pkg:apk/chainguard/python-3.9-basepkg:apk/chainguard/python-3.9-base-devpkg:apk/chainguard/python-3.9-devpkg:apk/chainguard/python-3.9-docpkg:apk/wolfi/python-3.10pkg:apk/wolfi/python-3.10-basepkg:apk/wolfi/python-3.10-base-devpkg:apk/wolfi/python-3.10-devpkg:apk/wolfi/python-3.10-docpkg:bitnami/libpythonpkg:bitnami/pythonpkg:bitnami/python-minpkg:rpm/opensuse/python311-core&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/python311&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/python311&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/python311-documentation&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/python312-core&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/python312&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/python312&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/python312-documentation&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/python313&distro=openSUSE%20Tumbleweedpkg:rpm/suse/python311-core&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6pkg:rpm/suse/python311-core&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP4pkg:rpm/suse/python311-core&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP6pkg:rpm/suse/python311-core&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/python311-core&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/python311&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP4pkg:rpm/suse/python311&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP6pkg:rpm/suse/python311&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/python311&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/python312-core&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP6pkg:rpm/suse/python312&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP6pkg:rpm/suse/python313-core&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP7pkg:rpm/suse/python313&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP7
< 3.10.17-r0+ 39 more
- (no CPE)range: < 3.10.17-r0
- (no CPE)range: < 3.10.17-r0
- (no CPE)range: < 3.10.17-r0
- (no CPE)range: < 3.10.17-r0
- (no CPE)range: < 3.10.17-r0
- (no CPE)range: < 3.9.25-r0
- (no CPE)range: < 3.9.25-r0
- (no CPE)range: < 3.9.25-r0
- (no CPE)range: < 3.9.25-r0
- (no CPE)range: < 3.9.25-r0
- (no CPE)range: < 3.10.17-r0
- (no CPE)range: < 3.10.17-r0
- (no CPE)range: < 3.10.17-r0
- (no CPE)range: < 3.10.17-r0
- (no CPE)range: < 3.10.17-r0
- (no CPE)range: < 3.9.23
- (no CPE)range: < 3.9.23
- (no CPE)range: < 3.9.23
- (no CPE)range: < 3.11.11-150600.3.21.1
- (no CPE)range: < 3.11.11-150600.3.21.1
- (no CPE)range: < 3.11.11-4.1
- (no CPE)range: < 3.11.11-150600.3.21.1
- (no CPE)range: < 3.12.9-150600.3.21.1
- (no CPE)range: < 3.12.9-150600.3.21.1
- (no CPE)range: < 3.12.9-2.1
- (no CPE)range: < 3.12.9-150600.3.21.1
- (no CPE)range: < 3.13.2-3.1
- (no CPE)range: < 3.11.11-150600.3.21.1
- (no CPE)range: < 3.11.11-150400.9.49.1
- (no CPE)range: < 3.11.11-150600.3.21.1
- (no CPE)range: < 3.11.11-1.1
- (no CPE)range: < 3.11.12-slfo.1.1_1.1
- (no CPE)range: < 3.11.11-150400.9.49.1
- (no CPE)range: < 3.11.11-150600.3.21.1
- (no CPE)range: < 3.11.11-1.1
- (no CPE)range: < 3.11.12-slfo.1.1_1.1
- (no CPE)range: < 3.12.9-150600.3.21.1
- (no CPE)range: < 3.12.9-150600.3.21.1
- (no CPE)range: < 3.13.5-150700.4.11.1
- (no CPE)range: < 3.13.5-150700.4.11.1
Patches
Vulnerability mechanics
References
10- github.com/python/cpython/commit/09fab93c3d857496c0bd162797fab816c311ee48nvd
- github.com/python/cpython/commit/70754d21c288535e86070ca7a6e90dcb670b8593nvd
- github.com/python/cpython/commit/9148b77e0af91cdacaa7fe3dfac09635c3fe9a74nvd
- github.com/python/cpython/commit/a4ef689ce670684ec132204b1cd03720c8e0a03dnvd
- github.com/python/cpython/commit/d4df3c55e4c5513947f907f24766b34d2ae8c090nvd
- github.com/python/cpython/issues/100884nvd
- github.com/python/cpython/pull/100885nvd
- github.com/python/cpython/pull/119099nvd
- lists.debian.org/debian-lts-announce/2025/03/msg00013.htmlnvd
- mail.python.org/archives/list/security-announce@python.org/thread/MB62IZMEC3UM6SGHP5LET5JX2Y7H4ZUR/nvd
News mentions
0No linked articles in our index yet.