Bug 2457781 (CVE-2026-32178) - CVE-2026-32178 dotnet: Dotnet: SMTP Command Injection and Header Injection via MailAddress parsing flaw
Summary: CVE-2026-32178 dotnet: Dotnet: SMTP Command Injection and Header Injection vi...
Keywords:
Status: NEW
Alias: CVE-2026-32178
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On: 2458418 2458419 2458420 2458421
Blocks:
TreeView+ depends on / blocked
 
Reported: 2026-04-13 08:10 UTC by OSIDB Bzimport
Modified: 2026-05-05 11:16 UTC (History)
1 user (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2026:13280 0 None None None 2026-05-04 01:34:46 UTC
Red Hat Product Errata RHSA-2026:13281 0 None None None 2026-05-04 01:32:17 UTC
Red Hat Product Errata RHSA-2026:13282 0 None None None 2026-05-04 01:52:26 UTC
Red Hat Product Errata RHSA-2026:13283 0 None None None 2026-05-04 01:38:18 UTC
Red Hat Product Errata RHSA-2026:13693 0 None None None 2026-05-05 11:16:16 UTC
Red Hat Product Errata RHSA-2026:8467 0 None None None 2026-04-16 14:02:45 UTC
Red Hat Product Errata RHSA-2026:8468 0 None None None 2026-04-16 14:02:22 UTC
Red Hat Product Errata RHSA-2026:8469 0 None None None 2026-04-16 14:10:34 UTC
Red Hat Product Errata RHSA-2026:8470 0 None None None 2026-04-16 13:50:20 UTC
Red Hat Product Errata RHSA-2026:8471 0 None None None 2026-04-16 14:42:03 UTC
Red Hat Product Errata RHSA-2026:8472 0 None None None 2026-04-16 13:50:58 UTC
Red Hat Product Errata RHSA-2026:8473 0 None None None 2026-04-16 14:36:34 UTC
Red Hat Product Errata RHSA-2026:8474 0 None None None 2026-04-16 14:43:30 UTC
Red Hat Product Errata RHSA-2026:8475 0 None None None 2026-04-16 14:35:01 UTC

Description OSIDB Bzimport 2026-04-13 08:10:36 UTC 
Dotnet: SMTP Command Injection and Header Injection via MailAddress Parsing Flaw in System.Net.Mail

Affected .NET versions: 6.0, 8.0, 9.0, 10.0
Comment 2 errata-xmlrpc 2026-04-16 13:50:18 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2026:8470 https://access.redhat.com/errata/RHSA-2026:8470
Comment 3 errata-xmlrpc 2026-04-16 13:50:56 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2026:8472 https://access.redhat.com/errata/RHSA-2026:8472
Comment 4 errata-xmlrpc 2026-04-16 14:02:21 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2026:8468 https://access.redhat.com/errata/RHSA-2026:8468
Comment 5 errata-xmlrpc 2026-04-16 14:02:44 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2026:8467 https://access.redhat.com/errata/RHSA-2026:8467
Comment 6 errata-xmlrpc 2026-04-16 14:10:32 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2026:8469 https://access.redhat.com/errata/RHSA-2026:8469
Comment 7 errata-xmlrpc 2026-04-16 14:35:00 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2026:8475 https://access.redhat.com/errata/RHSA-2026:8475
Comment 8 errata-xmlrpc 2026-04-16 14:36:33 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2026:8473 https://access.redhat.com/errata/RHSA-2026:8473
Comment 9 errata-xmlrpc 2026-04-16 14:42:02 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2026:8471 https://access.redhat.com/errata/RHSA-2026:8471
Comment 10 errata-xmlrpc 2026-04-16 14:43:29 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2026:8474 https://access.redhat.com/errata/RHSA-2026:8474
Comment 17 errata-xmlrpc 2026-05-04 01:32:16 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10.0 Extended Update Support

Via RHSA-2026:13281 https://access.redhat.com/errata/RHSA-2026:13281
Comment 18 errata-xmlrpc 2026-05-04 01:34:44 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10.0 Extended Update Support

Via RHSA-2026:13280 https://access.redhat.com/errata/RHSA-2026:13280
Comment 19 errata-xmlrpc 2026-05-04 01:38:17 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.6 Extended Update Support

Via RHSA-2026:13283 https://access.redhat.com/errata/RHSA-2026:13283
Comment 20 errata-xmlrpc 2026-05-04 01:52:24 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.6 Extended Update Support

Via RHSA-2026:13282 https://access.redhat.com/errata/RHSA-2026:13282
Comment 21 errata-xmlrpc 2026-05-05 11:16:15 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.4 Extended Update Support

Via RHSA-2026:13693 https://access.redhat.com/errata/RHSA-2026:13693
Note You need to log in before you can comment on or make changes to this bug.