Red Hat Product Errata RHSA-2026:9042 - Security Advisory Issued: 2026-04-20 Updated: 2026-04-20 RHSA-2026:9042 - Security Advisory Overview Updated Packages Synopsis Important: python3.11 security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for python3.11 is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): python: Python: Command-line option injection in webbrowser.open() via crafted URLs (CVE-2026-4519) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 x86_64 Red Hat Enterprise Linux Server - AUS 9.4 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64 Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.4 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.4 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.4 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.4 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.4 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.4 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.4 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.4 s390x Fixes BZ - 2449649 - CVE-2026-4519 python: Python: Command-line option injection in webbrowser.open() via crafted URLs CVEs CVE-2026-4519 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 SRPM python3.11-3.11.7-1.el9_4.12.src.rpm SHA-256: d4a13b02688307be0720133d0051442945d46c70c727d5562d1a98726c4977b5 x86_64 python3.11-3.11.7-1.el9_4.12.x86_64.rpm SHA-256: feee9f3e3a0354d8cb1cf76278815cb0772c12147d837c9df7e037cdfc31b3b8 python3.11-debuginfo-3.11.7-1.el9_4.12.i686.rpm SHA-256: dc7a9aab2646cdc90db2e9b3ac02507defb49cd4594cb624f8a83615eaea87d1 python3.11-debuginfo-3.11.7-1.el9_4.12.x86_64.rpm SHA-256: 9be5b9946f88e6f14d0d514bf2991fb4d2debd1ac999790e87b8901571dfc3e7 python3.11-debugsource-3.11.7-1.el9_4.12.i686.rpm SHA-256: 770763a28dfdcd7aa546a75463af8a8846fa00669a6676510574d81a028b5c56 python3.11-debugsource-3.11.7-1.el9_4.12.x86_64.rpm SHA-256: e710feac0ff2fd156c3bc3837509369f29efe6d8a61581fee33d63849cf1b1d1 python3.11-devel-3.11.7-1.el9_4.12.i686.rpm SHA-256: 69fc6fcc97bc1bfad620b74075df9f6df1a0e24cd854c4f81755200fa4a7b9d6 python3.11-devel-3.11.7-1.el9_4.12.x86_64.rpm SHA-256: a6442d62f57b17e59d0b94c52ea3ca6ce9c27e9adac85a3671f1567c24116778 python3.11-libs-3.11.7-1.el9_4.12.i686.rpm SHA-256: b0648a17e226feae8784d7d108b8ae5cae219f2cc10249325197f608181766e5 python3.11-libs-3.11.7-1.el9_4.12.x86_64.rpm SHA-256: e57a5be717e78d3e5e96003f307e6bb070cce6cbdc7830624afcd0daa4a1fbde python3.11-tkinter-3.11.7-1.el9_4.12.x86_64.rpm SHA-256: 5ddc15e6b2c0853369036db83d6bb4d2a0f77754280fb315509dc739ad4182d8 Red Hat Enterprise Linux Server - AUS 9.4 SRPM python3.11-3.11.7-1.el9_4.12.src.rpm SHA-256: d4a13b02688307be0720133d0051442945d46c70c727d5562d1a98726c4977b5 x86_64 python3.11-3.11.7-1.el9_4.12.x86_64.rpm SHA-256: feee9f3e3a0354d8cb1cf76278815cb0772c12147d837c9df7e037cdfc31b3b8 python3.11-debuginfo-3.11.7-1.el9_4.12.i686.rpm SHA-256: dc7a9aab2646cdc90db2e9b3ac02507defb49cd4594cb624f8a83615eaea87d1 python3.11-debuginfo-3.11.7-1.el9_4.12.x86_64.rpm SHA-256: 9be5b9946f88e6f14d0d514bf2991fb4d2debd1ac999790e87b8901571dfc3e7 python3.11-debugsource-3.11.7-1.el9_4.12.i686.rpm SHA-256: 770763a28dfdcd7aa546a75463af8a8846fa00669a6676510574d81a028b5c56 python3.11-debugsource-3.11.7-1.el9_4.12.x86_64.rpm SHA-256: e710feac0ff2fd156c3bc3837509369f29efe6d8a61581fee33d63849cf1b1d1 python3.11-devel-3.11.7-1.el9_4.12.i686.rpm SHA-256: 69fc6fcc97bc1bfad620b74075df9f6df1a0e24cd854c4f81755200fa4a7b9d6 python3.11-devel-3.11.7-1.el9_4.12.x86_64.rpm SHA-256: a6442d62f57b17e59d0b94c52ea3ca6ce9c27e9adac85a3671f1567c24116778 python3.11-libs-3.11.7-1.el9_4.12.i686.rpm SHA-256: b0648a17e226feae8784d7d108b8ae5cae219f2cc10249325197f608181766e5 python3.11-libs-3.11.7-1.el9_4.12.x86_64.rpm SHA-256: e57a5be717e78d3e5e96003f307e6bb070cce6cbdc7830624afcd0daa4a1fbde python3.11-tkinter-3.11.7-1.el9_4.12.x86_64.rpm SHA-256: 5ddc15e6b2c0853369036db83d6bb4d2a0f77754280fb315509dc739ad4182d8 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 SRPM python3.11-3.11.7-1.el9_4.12.src.rpm SHA-256: d4a13b02688307be0720133d0051442945d46c70c727d5562d1a98726c4977b5 s390x python3.11-3.11.7-1.el9_4.12.s390x.rpm SHA-256: 2a20be32603d67d34d5a363c89eeff80b634b21ba727818590542b8e1b40bc33 python3.11-debuginfo-3.11.7-1.el9_4.12.s390x.rpm SHA-256: e5fa6c1bc59f15944e82cc914955418c633cdfe49c6d5a6f75eee80bafd0f452 python3.11-debugsource-3.11.7-1.el9_4.12.s390x.rpm SHA-256: f6f38e4672ca290c2826c7da9d0e4b7471a12ceed99d59599a57077172655040 python3.11-devel-3.11.7-1.el9_4.12.s390x.rpm SHA-256: aada77f2d29820e8200d7384822305f44b6e59fdae21fe48b60205e9fdec3f42 python3.11-libs-3.11.7-1.el9_4.12.s390x.rpm SHA-256: 15dc419c44faa82c7fd5ea3c8f2db9c287f525f88bcf4d1e3a9e6d30a29b1623 python3.11-tkinter-3.11.7-1.el9_4.12.s390x.rpm SHA-256: 7e59f13292711ce482778d003c578b4c9f27356d31501af1f8edc1118978d1ce Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 SRPM python3.11-3.11.7-1.el9_4.12.src.rpm SHA-256: d4a13b02688307be0720133d0051442945d46c70c727d5562d1a98726c4977b5 ppc64le python3.11-3.11.7-1.el9_4.12.ppc64le.rpm SHA-256: d8499eae44e752569ae9032a4f700ef0696e6eeab559007fcbae52256e7fb825 python3.11-debuginfo-3.11.7-1.el9_4.12.ppc64le.rpm SHA-256: 6d1132894f6e747d99810198f255eccda6f7461a3b3b74a2e6bab7b62e31b123 python3.11-debugsource-3.11.7-1.el9_4.12.ppc64le.rpm SHA-256: 78e24675e1357721c1445bc14ea246931acc6b9bf59439bf411467e4c180add3 python3.11-devel-3.11.7-1.el9_4.12.ppc64le.rpm SHA-256: 5e368c7256d988696ab271800a8f58f0c0e4e0da78670f3554d3a0c76438c319 python3.11-libs-3.11.7-1.el9_4.12.ppc64le.rpm SHA-256: 179a439ec01cac50ff91bdee672096c65a620576354ee2cc4b65a28b336026c8 python3.11-tkinter-3.11.7-1.el9_4.12.ppc64le.rpm SHA-256: 2ef4454f5fcc18a63eabb5ce7489ac72ca4d19a1c7676ca6a2badf5765d02f6e Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 SRPM python3.11-3.11.7-1.el9_4.12.src.rpm SHA-256: d4a13b02688307be0720133d0051442945d46c70c727d5562d1a98726c4977b5 aarch64 python3.11-3.11.7-1.el9_4.12.aarch64.rpm SHA-256: 90bd843ec220daa3f13dee8807ea8c3a4fde02f03ef007ed52d892bd3674688f python3.11-debuginfo-3.11.7-1.el9_4.12.aarch64.rpm SHA-256: 67bd19114f25f3704c30af897a180bc001b5c57398a3f6c076aa402ca32fa606 python3.11-debugsource-3.11.7-1.el9_4.12.aarch64.rpm SHA-256: d62e7d8dc6a552d3323a8c51e4088c2b8d4a4505a0677f1964ca2f7cabd8661d python3.11-devel-3.11.7-1.el9_4.12.aarch64.rpm SHA-256: 548bf865264d6a634072167e1dd35e9f827c035f4a9a9a1913b7a21a4403fb62 python3.11-libs-3.11.7-1.el9_4.12.aarch64.rpm SHA-256: 3538504880eb4c53858e5b34ff5600ced88b847ae781db7d149e7e8cf22111f6 python3.11-tkinter-3.11.7-1.el9_4.12.aarch64.rpm SHA-256: 477513647fd66454ba51c0fdc1f07e40b426820d878fb6c4909862ee6064b51a Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 SRPM python3.11-3.11.7-1.el9_4.12.src.rpm SHA-256: d4a13b02688307be0720133d0051442945d46c70c727d5562d1a98726c4977b5 ppc64le python3.11-3.11.7-1.el9_4.12.ppc64le.rpm SHA-256: d8499eae44e752569ae9032a4f700ef0696e6eeab559007fcbae52256e7fb825 python3.11-debuginfo-3.11.7-1.el9_4.12.ppc64le.rpm SHA-256: 6d1132894f6e747d99810198f255eccda6f7461a3b3b74a2e6bab7b62e31b123 python3.11-debugsource-3.11.7-1.el9_4.12.ppc64le.rpm SHA-256: 78e24675e1357721c1445bc14ea246931acc6b9bf59439bf411467e4c180add3 python3.11-devel-3.11.7-1.el9_4.12.ppc64le.rpm SHA-256: 5e368c7256d988696ab271800a8f58f0c0e4e0da78670f3554d3a0c76438c319 python3.11-libs-3.11.7-1.el9_4.12.ppc64le.rpm SHA-256: 179a439ec01cac50ff91bdee672096c65a620576354ee2cc4b65a28b336026c8 python3.11-tkinter-3.11.7-1.el9_4.12.ppc64le.rpm SHA-256: 2ef4454f5fcc18a63eabb5ce7489ac72ca4d19a1c7676ca6a2badf5765d02f6e Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 SRPM python3.11-3.11.7-1.el9_4.12.src.rpm SHA-256: d4a13b02688307be0720133d0051442945d46c70c727d5562d1a98726c4977b5 x86_64 python3.11-3.11.7-1.el9_4.12.x86_64.rpm SHA-256: feee9f3e3a0354d8cb1cf76278815cb0772c12147d837c9df7e037cdfc31b3b8 python3.11-debuginfo-3.11.7-1.el9_4.12.i686.rpm SHA-256: