rpm package
opensuse/python-M2Crypto&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/python-M2Crypto&distro=openSUSE%20Tumbleweed
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-0672 | Med | — | < 0.48.0-1.1 | 0.48.0-1.1 | Jan 20, 2026 | When using http.cookies.Morsel, user-controlled cookie values and parameters can allow injecting HTTP headers into messages. Patch rejects all control characters within cookie names, values, and parameters. |
- affected < 0.48.0-1.1fixed 0.48.0-1.1
When using http.cookies.Morsel, user-controlled cookie values and parameters can allow injecting HTTP headers into messages. Patch rejects all control characters within cookie names, values, and parameters.