CVE-2025-1795
Mishandling of comma during folding and unicode-encoding of email headers
CVSS Score
0.0
EPSS Score
0.8%
EPSS Percentile
73th
During an address list folding when a separating comma ends up on a folded line and that line is to be unicode-encoded then the separator itself is also unicode-encoded. Expected behavior is that the separating comma remains a plan comma. This can result in the address header being misinterpreted by some mail servers.
| Vendor | python software foundation |
| Product | cpython |
| Published | Feb 28, 2025 |
| Last Updated | Apr 21, 2026 |
Stay Ahead of the Next One
Get instant alerts for python software foundation cpython
Be the first to know when new unknown vulnerabilities affecting python software foundation cpython are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Python Software Foundation / CPython
0 < 3.10.17 3.11.0 < 3.11.9 3.12.0 < 3.12.3 3.13.0a1 < 3.13.0a5
References
github.com: https://github.com/python/cpython/issues/100884 github.com: https://github.com/python/cpython/pull/100885 github.com: https://github.com/python/cpython/pull/119099 github.com: https://github.com/python/cpython/commit/09fab93c3d857496c0bd162797fab816c311ee48 github.com: https://github.com/python/cpython/commit/70754d21c288535e86070ca7a6e90dcb670b8593 github.com: https://github.com/python/cpython/commit/9148b77e0af91cdacaa7fe3dfac09635c3fe9a74 mail.python.org: https://mail.python.org/archives/list/[email protected]/thread/MB62IZMEC3UM6SGHP5LET5JX2Y7H4ZUR/ github.com: https://github.com/python/cpython/commit/a4ef689ce670684ec132204b1cd03720c8e0a03d github.com: https://github.com/python/cpython/commit/d4df3c55e4c5513947f907f24766b34d2ae8c090 lists.debian.org: https://lists.debian.org/debian-lts-announce/2025/03/msg00013.html