Ce mail provient de l'extérieur, restons vigilants

=====================================================================

                            CERT-Renater

                Note d'Information No. 2026/VULN307
_____________________________________________________________________

DATE                : 17/03/2026

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running CPython.

=====================================================================
https://mail.python.org/archives/list/security-announce@python.org/thread/5M7CGUW3XBRY7II4DK43KF7NQQ3TPZ6R/
https://mail.python.org/archives/list/security-announce@python.org/thread/H6CADMBCDRFGWCMOXWUIHFJNV43GABJ7/
_____________________________________________________________________


[CVE-2026-4224] Stack overflow parsing XML with deeply nested DTD
content models

Stan Ulbrych
16 mars 2026 17:46

There is a HIGH severity vulnerability
affecting CPython.

When an Expat parser with a registered ElementDeclHandler parses an inline
document type definition containing a deeply nested content model a C stack
overflow occurs.

Please see the linked CVE ID for the latest information on
affected versions:

    https://www.cve.org/CVERecord?id=CVE-2026-4224
    https://github.com/python/cpython/commit/eb0e8be3a7e11b87d198a2c3af1ed0eccf5...

_____________________________________________________________________


[CVE-2026-3644] Incomplete control character validation in http.cookies

Stan Ulbrych
16 mars 2026 17:28

There is a MEDIUM severity vulnerability
affecting CPython.

The fix for CVE-2026-0672, which rejected control characters in
http.cookies.Morsel,
was incomplete. The Morsel.update(), |= operator, and unpickling paths
were not
patched, allowing control characters to bypass input validation.
Additionally,
BaseCookie.js_output() lacked the output validation applied to
BaseCookie.output().

Please see the linked CVE ID for the latest information on
affected versions:

    https://www.cve.org/CVERecord?id=CVE-2026-3644
    https://github.com/python/cpython/commit/57e88c1cf95e1481b94ae57abe1010469d4...

--
Best regards,
Stan Ulbrych.


=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================