diff options
| author | Gregory P. Smith <greg@krypto.org> | 2023-07-21 03:30:52 (GMT) |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2023-07-21 03:30:52 (GMT) |
| commit | a31dea1feb61793e48fa9aa5014f358352205c1d (patch) | |
| tree | fe53ab71a1484a9a7047393ca2d54218f9dbcb05 /Misc | |
| parent | d81b4f8ff84311fa737e62f2883442ec06d7d5d8 (diff) | |
| download | cpython-a31dea1feb61793e48fa9aa5014f358352205c1d.zip cpython-a31dea1feb61793e48fa9aa5014f358352205c1d.tar.gz cpython-a31dea1feb61793e48fa9aa5014f358352205c1d.tar.bz2 | |
gh-106669: Revert "gh-102988: Detect email address parsing errors ... (#105127)" (#106733)
This reverts commit 18dfbd035775c15533d13a98e56b1d2bf5c65f00.
Adds a regression test from the issue.
See https://github.com/python/cpython/issues/106669.
Diffstat (limited to 'Misc')
| -rw-r--r-- | Misc/NEWS.d/next/Security/2023-06-13-20-52-24.gh-issue-102988.Kei7Vf.rst | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/Misc/NEWS.d/next/Security/2023-06-13-20-52-24.gh-issue-102988.Kei7Vf.rst b/Misc/NEWS.d/next/Security/2023-06-13-20-52-24.gh-issue-102988.Kei7Vf.rst index e0434cc..c67ec45 100644 --- a/Misc/NEWS.d/next/Security/2023-06-13-20-52-24.gh-issue-102988.Kei7Vf.rst +++ b/Misc/NEWS.d/next/Security/2023-06-13-20-52-24.gh-issue-102988.Kei7Vf.rst @@ -1,4 +1,4 @@ -CVE-2023-27043: Prevent :func:`email.utils.parseaddr` -and :func:`email.utils.getaddresses` from returning the realname portion of an -invalid RFC2822 email header in the email address portion of the 2-tuple -returned after being parsed by :class:`email._parseaddr.AddressList`. +Reverted the :mod:`email.utils` security improvement change released in +3.12beta4 that unintentionally caused :mod:`email.utils.getaddresses` to fail +to parse email addresses with a comma in the quoted name field. +See :gh:`106669`. |