bpo-39073: validate Address parts to disallow CRLF (GH-19007) Disallow CR or LF in email.headerregistry.Address arguments to guard against header injection attacks. (cherry picked from commit 614f17211c5fc0e5b828be1d3320661d1038fe8f) Co-authored-by: Ashwin Ramaswami <aramaswamis@gmail.com>

commit: 75635c6095bcfbb9fccc239115d3d03ae20a307f [log] [tgz]
author: Miss Islington (bot) <31488909+miss-islington@users.noreply.github.com> Wed May 27 06:37:40 2020 -0700
committer: GitHub <noreply@github.com> Wed May 27 06:37:40 2020 -0700
tree: 002635c5771d551f74dd65711a014661c4d99dbe
parent: 5594c07d97cc56ec7fabc66c6a5c644d3b809612 [diff] [blame]
diff --git a/Lib/email/headerregistry.py b/Lib/email/headerregistry.py
index 8d1a202..d0914fd 100644
--- a/Lib/email/headerregistry.py
+++ b/Lib/email/headerregistry.py

@@ -31,6 +31,11 @@
         without any Content Transfer Encoding.
 
         """
+
+        inputs = ''.join(filter(None, (display_name, username, domain, addr_spec)))
+        if '\r' in inputs or '\n' in inputs:
+            raise ValueError("invalid arguments; address parts cannot contain CR or LF")
+
         # This clause with its potential 'raise' may only happen when an
         # application program creates an Address object using an addr_spec
         # keyword.  The email library code itself must always supply username
commit	75635c6095bcfbb9fccc239115d3d03ae20a307f	[log] [tgz]
author	Miss Islington (bot) <31488909+miss-islington@users.noreply.github.com>	Wed May 27 06:37:40 2020 -0700
committer	GitHub <noreply@github.com>	Wed May 27 06:37:40 2020 -0700
tree	002635c5771d551f74dd65711a014661c4d99dbe
parent	5594c07d97cc56ec7fabc66c6a5c644d3b809612 [diff] [blame]