rh-python38-python-psutil-5.6.4-5.el7, rh-python38-python-urllib3-1.25.7-6.el7

Python is an interpreted, interactive, object-oriented programming language,
which includes modules, classes, exceptions, very high level dynamic data types
and dynamic typing. Python supports interfaces to many system calls and
libraries, as well as to various windowing systems.

Security Fix(es):

* python-psutil: double free because of refcount mishandling (CVE-2019-18874)

* python-urllib3: CRLF injection via HTTP request method (CVE-2020-26137)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.

CVE-2019-18874
psutil (aka python-psutil) through 5.6.5 can have a double free. This occurs
because of refcount mishandling within a while or for loop that converts system
data into a Python object.
CVE-2020-26137
urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP
request method, as demonstrated by inserting CR and LF control characters in the
first argument of putrequest(). NOTE: this is similar to CVE-2020-26116.