{"id":"RHSA-2020:4285","summary":"Red Hat Security Advisory: rh-python36 security, bug fix, and enhancement update","modified":"2026-03-21T10:01:54Z","published":"2024-09-13T22:43:24Z","upstream":["CVE-2019-16935","CVE-2019-18348","CVE-2019-20907","CVE-2019-20916","CVE-2020-14422","CVE-2020-26116","CVE-2020-8492"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2020:4285"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1727276"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1763229"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1809065"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1826520"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1854926"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1856481"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1868135"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1873080"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1883014"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4285.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2019-16935"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2019-16935"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2019-16935"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2019-18348"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2019-18348"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2019-18348"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2019-20907"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2019-20907"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2019-20907"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2019-20916"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2019-20916"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2019-20916"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-8492"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-8492"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-8492"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-14422"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-14422"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-14422"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-26116"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-26116"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-26116"},{"type":"ARTICLE","url":"https://python-security.readthedocs.io/vuln/http-header-injection-method.html"}],"affected":[{"package":{"name":"rh-python36-python","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-python36-python"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.6.12-1.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-debug","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-python36-python-debug"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.6.12-1.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-debuginfo","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-python36-python-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.6.12-1.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-devel","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-python36-python-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.6.12-1.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-libs","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-python36-python-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.6.12-1.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-pip","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-python36-python-pip"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.0.1-5.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-test","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-python36-python-test"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.6.12-1.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-tkinter","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-python36-python-tkinter"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.6.12-1.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-tools","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-python36-python-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.6.12-1.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-virtualenv","ecosystem":"Red Hat:rhel_software_collections:3::el6","purl":"pkg:rpm/redhat/rh-python36-python-virtualenv"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:15.1.0-3.el6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-python36-python"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.6.12-1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-debug","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-python36-python-debug"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.6.12-1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-debuginfo","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-python36-python-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.6.12-1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-devel","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-python36-python-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.6.12-1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-libs","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-python36-python-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.6.12-1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-pip","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-python36-python-pip"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.0.1-5.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-test","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-python36-python-test"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.6.12-1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-tkinter","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-python36-python-tkinter"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.6.12-1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-tools","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-python36-python-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.6.12-1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}},{"package":{"name":"rh-python36-python-virtualenv","ecosystem":"Red Hat:rhel_software_collections:3::el7","purl":"pkg:rpm/redhat/rh-python36-python-virtualenv"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:15.1.0-3.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:4285.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"}]}