Red Hat Product Errata RHSA-2026:9614 - Security Advisory Issued: 2026-04-22 Updated: 2026-04-22 RHSA-2026:9614 - Security Advisory Overview Updated Packages Synopsis Important: python security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for python is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): python: Python: Command-line option injection in webbrowser.open() via crafted URLs (CVE-2026-4519) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 x86_64 Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7 s390x Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7 ppc64 Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7 ppc64le Fixes BZ - 2449649 - CVE-2026-4519 python: Python: Command-line option injection in webbrowser.open() via crafted URLs CVEs CVE-2026-4519 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 SRPM python-2.7.5-94.el7_9.4.src.rpm SHA-256: d94f49e7905345e72b8677ff84ce649869f476cfb4f3a70018f110d7e4ca0790 x86_64 python-2.7.5-94.el7_9.4.x86_64.rpm SHA-256: 05d2bd4b1f4b4e3ab995a888740f570bcf6b803d2774ff9e99af85ea2cdbbede python-debug-2.7.5-94.el7_9.4.x86_64.rpm SHA-256: fb57c23bb5395af7fab953a9e2d278e6747536be3accfe254e99f98fd2d7fa11 python-debuginfo-2.7.5-94.el7_9.4.i686.rpm SHA-256: b5d5c3d48f1c2d64ca21c71306c93ff15aa2ccb888a9a1d778b27b10d4c676d9 python-debuginfo-2.7.5-94.el7_9.4.x86_64.rpm SHA-256: 5564e27cd1e41ef2e6f117be75d2934bb9126749109a4ce90a0cfb6a63677ffe python-debuginfo-2.7.5-94.el7_9.4.x86_64.rpm SHA-256: 5564e27cd1e41ef2e6f117be75d2934bb9126749109a4ce90a0cfb6a63677ffe python-devel-2.7.5-94.el7_9.4.x86_64.rpm SHA-256: bb90598bbf84252da13a6d5cef174d1941c098a309f4da4d290be064a3b72281 python-libs-2.7.5-94.el7_9.4.i686.rpm SHA-256: 6749c9664dc7c3b7f1fc1734270c36194b0e2baf0826bbee5ff9f6adb643a898 python-libs-2.7.5-94.el7_9.4.x86_64.rpm SHA-256: db2d46ddbcbba60d2801343009610f4a59833e0f95df870cfdb1665ddc9b8d9a python-test-2.7.5-94.el7_9.4.x86_64.rpm SHA-256: 9cbf788bc154052420cf66f4cb9b2900e966bfd5d7e625c94d12d65d95388bcd python-tools-2.7.5-94.el7_9.4.x86_64.rpm SHA-256: bae40e628eaf56391d5e7cf8bdb8fd89dcd992d06e9b26102d88a39fbf30b4ac tkinter-2.7.5-94.el7_9.4.x86_64.rpm SHA-256: 140c23bb16cea1cbec1ff40cf017bc02b1553bb50487daa886583f780d2be85d Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7 SRPM python-2.7.5-94.el7_9.4.src.rpm SHA-256: d94f49e7905345e72b8677ff84ce649869f476cfb4f3a70018f110d7e4ca0790 s390x python-2.7.5-94.el7_9.4.s390x.rpm SHA-256: 661080324a8837529972eeb2a545af1fb8408ee9c1e1e00289df9bbe7c4a57d9 python-debug-2.7.5-94.el7_9.4.s390x.rpm SHA-256: 0b993e67f004b0228df3dad5d0138a791ce161e782e4b781fa9bc58d25bbfcac python-debuginfo-2.7.5-94.el7_9.4.s390.rpm SHA-256: 7f9648ba79190496cf286deb0a9abd905ab772976bc330c1e3f2f79e79e581d8 python-debuginfo-2.7.5-94.el7_9.4.s390x.rpm SHA-256: 858c77ea7ad356f44bde6790120e022da99552048c409325b89cc303c8039600 python-debuginfo-2.7.5-94.el7_9.4.s390x.rpm SHA-256: 858c77ea7ad356f44bde6790120e022da99552048c409325b89cc303c8039600 python-devel-2.7.5-94.el7_9.4.s390x.rpm SHA-256: df0ea3d07cf9f3df215fe4d361d9f7e3359b61a03edf195a3369c9fdf1101677 python-libs-2.7.5-94.el7_9.4.s390.rpm SHA-256: f9bf4524c30f0aba1058a00d2dd93ac9072fe4c44d895d0ef027a1fb09d254e8 python-libs-2.7.5-94.el7_9.4.s390x.rpm SHA-256: bfc6cb4f8a8240dc612680f900553c58acdf128807daf074d9c6cadbe432eb16 python-test-2.7.5-94.el7_9.4.s390x.rpm SHA-256: c9cafc6ad778e7d3001056be1aaef4e5e8d2abe516d94e54b95a6f22c779d0b4 python-tools-2.7.5-94.el7_9.4.s390x.rpm SHA-256: 78498a7e465460f44062b0445a67347bd164aaa006afe78d59722b2d0eaa2aa7 tkinter-2.7.5-94.el7_9.4.s390x.rpm SHA-256: a57c8ad37658170cd86b118fbba2c2a043c37e25755f73d5d5695452c7e853da Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7 SRPM python-2.7.5-94.el7_9.4.src.rpm SHA-256: d94f49e7905345e72b8677ff84ce649869f476cfb4f3a70018f110d7e4ca0790 ppc64 python-2.7.5-94.el7_9.4.ppc64.rpm SHA-256: 40e2bc47d6e4c076b14f319633261ca6ddb21573ec7c20c14bcfe1d805e71fca python-debug-2.7.5-94.el7_9.4.ppc64.rpm SHA-256: 41502b7aaee60d58298ca6acd3be002bd8f5bbf75d6d3ce905240683392ff00c python-debuginfo-2.7.5-94.el7_9.4.ppc.rpm SHA-256: a9102ccd1435d142ef13c7f9f6e216544000e0eb372f7002750edf5a210d70e7 python-debuginfo-2.7.5-94.el7_9.4.ppc64.rpm SHA-256: 77f28bedd3f21dd30f8af3cb0cb8bbefbd5cafb876e97fa33ac3c3c076f30da8 python-debuginfo-2.7.5-94.el7_9.4.ppc64.rpm SHA-256: 77f28bedd3f21dd30f8af3cb0cb8bbefbd5cafb876e97fa33ac3c3c076f30da8 python-devel-2.7.5-94.el7_9.4.ppc64.rpm SHA-256: b6b91e503822d9cbd6a10533513d6719b92160e9ff2724d5917ab2035e205fb1 python-libs-2.7.5-94.el7_9.4.ppc.rpm SHA-256: f2071d1c37ed12725ce6c0f3414e33a2d88ded73721185e893f1c4814d5043df python-libs-2.7.5-94.el7_9.4.ppc64.rpm SHA-256: b595e211395809aafd8aea3a1a20f7af09bbc8667e83fbbfbca214b3fc5c743c python-test-2.7.5-94.el7_9.4.ppc64.rpm SHA-256: 0578af1e32f6507f5e47fd9f9a573e2c3b47b88db96738c41883d04ce2571a78 python-tools-2.7.5-94.el7_9.4.ppc64.rpm SHA-256: b3400b5b3d02d3b8350501415bbbcd643daa50c43b70b61f80d96ca8b00b0ebb tkinter-2.7.5-94.el7_9.4.ppc64.rpm SHA-256: dd4693efaef4374a9f4f22e1a8dd278c74a8b55cdf049b8ff8847b2fb8c6e86a Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7 SRPM python-2.7.5-94.el7_9.4.src.rpm SHA-256: d94f49e7905345e72b8677ff84ce649869f476cfb4f3a70018f110d7e4ca0790 ppc64le python-2.7.5-94.el7_9.4.ppc64le.rpm SHA-256: 6db284c1825210ffc8049a6d1d4c57f316e93f23bc2e1eb606a0ae6fb27d7880 python-debug-2.7.5-94.el7_9.4.ppc64le.rpm SHA-256: 4f8539f699dbbaf85a9608218fa0559d8be7cb771839ed177cb1267ba4990651 python-debuginfo-2.7.5-94.el7_9.4.ppc64le.rpm SHA-256: cd977736bae6df6197a6b35a9a867562b34e39007c2c60c4bc3a967cbd322e44 python-debuginfo-2.7.5-94.el7_9.4.ppc64le.rpm SHA-256: cd977736bae6df6197a6b35a9a867562b34e39007c2c60c4bc3a967cbd322e44 python-devel-2.7.5-94.el7_9.4.ppc64le.rpm SHA-256: 1575ca5cc9f2239e2855c8afc28f41448a7c5029965e7192b6fc26d8e668400b python-libs-2.7.5-94.el7_9.4.ppc64le.rpm SHA-256: 1d8d6de5ad48ee3e2c5540149f441fefb9023de36b4e7f90fa3e5bd05cc7374a python-test-2.7.5-94.el7_9.4.ppc64le.rpm SHA-256: 43e08ea8e961b90c25c16a36e34ba83be39c84330bd47a8f84ca3c7ba1dcc00a python-tools-2.7.5-94.el7_9.4.ppc64le.rpm SHA-256: f81ee4782c37f8f7f21674aaf4af879a431baa63770c2591668647de08fccebf tkinter-2.7.5-94.el7_9.4.ppc64le.rpm SHA-256: ae36cf6bd901bf59102a25cc191f6911a63e0f15b8850f5270758af65777a9fa The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .