{ "schema_version": "1.7.0", "id": "RHSA-2020:4273", "related": [], "upstream": [ "CVE-2019-18348", "CVE-2019-20907", "CVE-2019-20916", "CVE-2020-26116" ], "published": "2024-09-13T16:21:35Z", "modified": "2026-03-21T10:01:54Z", "summary": "Red Hat Security Advisory: python27 security, bug fix, and enhancement update", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H" } ], "affected": [ { "package": { "name": "python27-python", "ecosystem": "Red Hat:rhel_software_collections:3::el7", "purl": "pkg:rpm/redhat/python27-python" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.7.18-2.el7" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "python27-python-debug", "ecosystem": "Red Hat:rhel_software_collections:3::el7", "purl": "pkg:rpm/redhat/python27-python-debug" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.7.18-2.el7" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "python27-python-debuginfo", "ecosystem": "Red Hat:rhel_software_collections:3::el7", "purl": "pkg:rpm/redhat/python27-python-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.7.18-2.el7" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "python27-python-devel", "ecosystem": "Red Hat:rhel_software_collections:3::el7", "purl": "pkg:rpm/redhat/python27-python-devel" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.7.18-2.el7" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "python27-python-libs", "ecosystem": "Red Hat:rhel_software_collections:3::el7", "purl": "pkg:rpm/redhat/python27-python-libs" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.7.18-2.el7" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "python27-python-pip", "ecosystem": "Red Hat:rhel_software_collections:3::el7", "purl": "pkg:rpm/redhat/python27-python-pip" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:8.1.2-6.el7" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "python27-python-test", "ecosystem": "Red Hat:rhel_software_collections:3::el7", "purl": "pkg:rpm/redhat/python27-python-test" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.7.18-2.el7" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "python27-python-tools", "ecosystem": "Red Hat:rhel_software_collections:3::el7", "purl": "pkg:rpm/redhat/python27-python-tools" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.7.18-2.el7" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "python27-python-virtualenv", "ecosystem": "Red Hat:rhel_software_collections:3::el7", "purl": "pkg:rpm/redhat/python27-python-virtualenv" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:13.1.0-4.el7" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "python27-tkinter", "ecosystem": "Red Hat:rhel_software_collections:3::el7", "purl": "pkg:rpm/redhat/python27-tkinter" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.7.18-2.el7" } ], "type": "ECOSYSTEM" } ] } ], "references": [ { "type": "ADVISORY", "url": "https://access.redhat.com/errata/RHSA-2020:4273" }, { "type": "ARTICLE", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1727276" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1856481" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1868135" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1882656" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1883014" }, { "type": "ADVISORY", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4273.json" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2019-18348" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2019-18348" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18348" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2019-20907" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2019-20907" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-20907" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2019-20916" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2019-20916" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-20916" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2020-26116" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2020-26116" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-26116" }, { "type": "ARTICLE", "url": "https://python-security.readthedocs.io/vuln/http-header-injection-method.html" } ] }