Red Hat Product Errata RHSA-2026:9705 - Security Advisory Issued: 2026-04-22 Updated: 2026-04-22 RHSA-2026:9705 - Security Advisory Overview Updated Packages Synopsis Important: python3.11 security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for python3.11 is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): python: Python: Command-line option injection in webbrowser.open() via crafted URLs (CVE-2026-4519) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64 Red Hat Enterprise Linux Server - AUS 9.6 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64 Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.6 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.6 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.6 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.6 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.6 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.6 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.6 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.6 s390x Fixes BZ - 2449649 - CVE-2026-4519 python: Python: Command-line option injection in webbrowser.open() via crafted URLs CVEs CVE-2026-4519 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 SRPM python3.11-3.11.11-2.el9_6.6.src.rpm SHA-256: 830bb59c396b3bb8dd27e04232a4d47f650f9439dff85f3977b9dc8d26cbc5c5 x86_64 python3.11-3.11.11-2.el9_6.6.x86_64.rpm SHA-256: 3987954f27df5d5bbf516a8f274f1ad7c2769ccbc776a79660fce7b26fdbcbd2 python3.11-debuginfo-3.11.11-2.el9_6.6.i686.rpm SHA-256: 9167836114af2d072c951201c550f0e182578d252f856d2c1c7244079d4dea3b python3.11-debuginfo-3.11.11-2.el9_6.6.x86_64.rpm SHA-256: 3c12aeae9271c56fd62ec9897fcb978452d8c40a4b12d8c6ccb66a539c53aed2 python3.11-debugsource-3.11.11-2.el9_6.6.i686.rpm SHA-256: e21866a660a3ee21a12d721d72e2b6ca5698d277794db3d106935a275d946cd5 python3.11-debugsource-3.11.11-2.el9_6.6.x86_64.rpm SHA-256: 28359bfd00afa2058cfb6353ff818ee8631cddfde301e9da8f43e91a65281506 python3.11-devel-3.11.11-2.el9_6.6.i686.rpm SHA-256: 56dd1dac2ee549439607888b6e59ef103d9ab5447fa8726243dcc037bb31da08 python3.11-devel-3.11.11-2.el9_6.6.x86_64.rpm SHA-256: d3ecf7676254e49cbb19c6e4c1fd46cffaf6048351ab16198637df38ea234ff8 python3.11-libs-3.11.11-2.el9_6.6.i686.rpm SHA-256: 6ace19d7a19182e4571cddf1024140edfb06de3847a295af1fd8ce1ad1de2263 python3.11-libs-3.11.11-2.el9_6.6.x86_64.rpm SHA-256: 4b1ecf5900f81222c393958917241eee30f9deda00e5c544143faa2e2cc0bad4 python3.11-tkinter-3.11.11-2.el9_6.6.x86_64.rpm SHA-256: 02a3d6b0970082f25a11349f8b251fa36c35c1e0231904836bbf6262b6f00e05 Red Hat Enterprise Linux Server - AUS 9.6 SRPM python3.11-3.11.11-2.el9_6.6.src.rpm SHA-256: 830bb59c396b3bb8dd27e04232a4d47f650f9439dff85f3977b9dc8d26cbc5c5 x86_64 python3.11-3.11.11-2.el9_6.6.x86_64.rpm SHA-256: 3987954f27df5d5bbf516a8f274f1ad7c2769ccbc776a79660fce7b26fdbcbd2 python3.11-debuginfo-3.11.11-2.el9_6.6.i686.rpm SHA-256: 9167836114af2d072c951201c550f0e182578d252f856d2c1c7244079d4dea3b python3.11-debuginfo-3.11.11-2.el9_6.6.x86_64.rpm SHA-256: 3c12aeae9271c56fd62ec9897fcb978452d8c40a4b12d8c6ccb66a539c53aed2 python3.11-debugsource-3.11.11-2.el9_6.6.i686.rpm SHA-256: e21866a660a3ee21a12d721d72e2b6ca5698d277794db3d106935a275d946cd5 python3.11-debugsource-3.11.11-2.el9_6.6.x86_64.rpm SHA-256: 28359bfd00afa2058cfb6353ff818ee8631cddfde301e9da8f43e91a65281506 python3.11-devel-3.11.11-2.el9_6.6.i686.rpm SHA-256: 56dd1dac2ee549439607888b6e59ef103d9ab5447fa8726243dcc037bb31da08 python3.11-devel-3.11.11-2.el9_6.6.x86_64.rpm SHA-256: d3ecf7676254e49cbb19c6e4c1fd46cffaf6048351ab16198637df38ea234ff8 python3.11-libs-3.11.11-2.el9_6.6.i686.rpm SHA-256: 6ace19d7a19182e4571cddf1024140edfb06de3847a295af1fd8ce1ad1de2263 python3.11-libs-3.11.11-2.el9_6.6.x86_64.rpm SHA-256: 4b1ecf5900f81222c393958917241eee30f9deda00e5c544143faa2e2cc0bad4 python3.11-tkinter-3.11.11-2.el9_6.6.x86_64.rpm SHA-256: 02a3d6b0970082f25a11349f8b251fa36c35c1e0231904836bbf6262b6f00e05 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 SRPM python3.11-3.11.11-2.el9_6.6.src.rpm SHA-256: 830bb59c396b3bb8dd27e04232a4d47f650f9439dff85f3977b9dc8d26cbc5c5 s390x python3.11-3.11.11-2.el9_6.6.s390x.rpm SHA-256: e16a054fc741e11df21668599ffe9fecee07253eca3387e17615a268e6c32552 python3.11-debuginfo-3.11.11-2.el9_6.6.s390x.rpm SHA-256: 4e233c853471e7cb593713a3cab7645849e212448ddb8cf0840da74cbef1c03e python3.11-debugsource-3.11.11-2.el9_6.6.s390x.rpm SHA-256: 04902f9f722f6dd54b203ea3f57238d0cdf2fcd46ec53bd9ab42075782d4eea2 python3.11-devel-3.11.11-2.el9_6.6.s390x.rpm SHA-256: 7e38e63c065b792e8699921280fe2c764c52210eeeb07de8e3ef2bb85fe1bd1c python3.11-libs-3.11.11-2.el9_6.6.s390x.rpm SHA-256: b9d4dcb589d02193f4bba6ff6403c098314386a7358c38fc1b6c7d96f8348652 python3.11-tkinter-3.11.11-2.el9_6.6.s390x.rpm SHA-256: fa0956677b1f76c00ba5cd63520f523f856266ac9cceafde123f23f92a411565 Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 SRPM python3.11-3.11.11-2.el9_6.6.src.rpm SHA-256: 830bb59c396b3bb8dd27e04232a4d47f650f9439dff85f3977b9dc8d26cbc5c5 ppc64le python3.11-3.11.11-2.el9_6.6.ppc64le.rpm SHA-256: 8fb63445fa6f15dc158bed3a3b1540ec9d3e596715e7bc197acea6b6b134ce24 python3.11-debuginfo-3.11.11-2.el9_6.6.ppc64le.rpm SHA-256: 25e39cd585e2158d50f327d2fac23fda6bc3c819f96291d4c323806a9156f894 python3.11-debugsource-3.11.11-2.el9_6.6.ppc64le.rpm SHA-256: e18bb4b0e01af8ae71c30b2bc1db21480c4d92fdf5fcb7e2bbbd19eafd16b332 python3.11-devel-3.11.11-2.el9_6.6.ppc64le.rpm SHA-256: 1d513554e75bd6d1fb6f05a9f6ad34249756318143f8cff12ddde37f086b5111 python3.11-libs-3.11.11-2.el9_6.6.ppc64le.rpm SHA-256: 28faec7feae6e27d961c5ac3b9781424c72db0164f63a92158a5af54199cac80 python3.11-tkinter-3.11.11-2.el9_6.6.ppc64le.rpm SHA-256: 6e845d66538a7e13d2581f1fedab478ec284d2a46220cbb7f94be29333dbb824 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 SRPM python3.11-3.11.11-2.el9_6.6.src.rpm SHA-256: 830bb59c396b3bb8dd27e04232a4d47f650f9439dff85f3977b9dc8d26cbc5c5 aarch64 python3.11-3.11.11-2.el9_6.6.aarch64.rpm SHA-256: b5926473be21c5541e206784dac783cc1fedfbb92bbaa9c6c924db9dad70ea05 python3.11-debuginfo-3.11.11-2.el9_6.6.aarch64.rpm SHA-256: 70d24ee87dce99df63634b6cef48d3bffd5b85cbfb14aa8f14d73b2bade7e931 python3.11-debugsource-3.11.11-2.el9_6.6.aarch64.rpm SHA-256: 98871fc9179d5b95f1dcae2074207f48ae294a22a1103c0a34898d5873102d83 python3.11-devel-3.11.11-2.el9_6.6.aarch64.rpm SHA-256: 119f06d352feb6905d4c4ab4e73e7be7f1ae1be12522f39fe7e2fad08c7db457 python3.11-libs-3.11.11-2.el9_6.6.aarch64.rpm SHA-256: 15bbeee1b456e5790269e24fa639574bb028ed4a7628551ced52446a919f4379 python3.11-tkinter-3.11.11-2.el9_6.6.aarch64.rpm SHA-256: 9a68ead3cb1844bb77b9a376f4bb06c7e664cd63a4d5792ee18b7329de7a6388 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 SRPM python3.11-3.11.11-2.el9_6.6.src.rpm SHA-256: 830bb59c396b3bb8dd27e04232a4d47f650f9439dff85f3977b9dc8d26cbc5c5 ppc64le python3.11-3.11.11-2.el9_6.6.ppc64le.rpm SHA-256: 8fb63445fa6f15dc158bed3a3b1540ec9d3e596715e7bc197acea6b6b134ce24 python3.11-debuginfo-3.11.11-2.el9_6.6.ppc64le.rpm SHA-256: 25e39cd585e2158d50f327d2fac23fda6bc3c819f96291d4c323806a9156f894 python3.11-debugsource-3.11.11-2.el9_6.6.ppc64le.rpm SHA-256: e18bb4b0e01af8ae71c30b2bc1db21480c4d92fdf5fcb7e2bbbd19eafd16b332 python3.11-devel-3.11.11-2.el9_6.6.ppc64le.rpm SHA-256: 1d513554e75bd6d1fb6f05a9f6ad34249756318143f8cff12ddde37f086b5111 python3.11-libs-3.11.11-2.el9_6.6.ppc64le.rpm SHA-256: 28faec7feae6e27d961c5ac3b9781424c72db0164f63a92158a5af54199cac80 python3.11-tkinter-3.11.11-2.el9_6.6.ppc64le.rpm SHA-256: 6e845d66538a7e13d2581f1fedab478ec284d2a46220cbb7f94be29333dbb824 Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 SRPM python3.11-3.11.11-2.el9_6.6.src.rpm SHA-256: 830bb59c396b3bb8dd27e04232a4d47f650f9439dff85f3977b9dc8d26cbc5c5 x86_64 python3.11-3.11.11-2.el9_6.6.x86_64.rpm SHA-256: 3987954f27df5d5bbf516a8f274f1ad7c2769ccbc776a79660fce7b26fdbcbd2 python3.11-debuginfo-3.11.11-2.el9_6.6.i686.rpm SHA-256: