Red Hat Product Errata RHSA-2026:9745 - Security Advisory Issued: 2026-04-22 Updated: 2026-04-22 RHSA-2026:9745 - Security Advisory Overview Updated Packages Synopsis Important: python3 security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for python3 is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): python: Python: Command-line option injection in webbrowser.open() via crafted URLs (CVE-2026-4519) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 x86_64 Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7 s390x Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7 ppc64 Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7 ppc64le Fixes BZ - 2449649 - CVE-2026-4519 python: Python: Command-line option injection in webbrowser.open() via crafted URLs CVEs CVE-2026-4519 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 SRPM python3-3.6.8-21.el7_9.5.src.rpm SHA-256: 3aec5a474f47c548c2d714c8ac661529bad047eed0dc91b56e0f52f712222b7b x86_64 python3-3.6.8-21.el7_9.5.i686.rpm SHA-256: 7ba0014e13588cec5c91f1658a3c3c9575c74a5ba75e53c832f2698a774069b5 python3-3.6.8-21.el7_9.5.x86_64.rpm SHA-256: cd713f9156307655fa2b82045a70008a30f74858f51c682b34aff062cb469952 python3-debug-3.6.8-21.el7_9.5.i686.rpm SHA-256: c30208fb0f8e4cd33a02356c271737a602cd08da845353db1ccc09c9a147721d python3-debug-3.6.8-21.el7_9.5.x86_64.rpm SHA-256: 2f0bea734408affd589c21ffb67e0bf294654985bda654f56c2eb5c5d267f69c python3-debuginfo-3.6.8-21.el7_9.5.i686.rpm SHA-256: 8c7fe21ceb76c669b738f6ecb96b89dc11bdddba8e451076f0caaafb16ebc6ef python3-debuginfo-3.6.8-21.el7_9.5.i686.rpm SHA-256: 8c7fe21ceb76c669b738f6ecb96b89dc11bdddba8e451076f0caaafb16ebc6ef python3-debuginfo-3.6.8-21.el7_9.5.x86_64.rpm SHA-256: f91abf15ce4a3720c92e174379f7f8ab7c89d1f2b5967d0ab5c327ef1137de69 python3-debuginfo-3.6.8-21.el7_9.5.x86_64.rpm SHA-256: f91abf15ce4a3720c92e174379f7f8ab7c89d1f2b5967d0ab5c327ef1137de69 python3-devel-3.6.8-21.el7_9.5.i686.rpm SHA-256: 84e88a56ff6ee045029bb8ea576db48126bfe49c44ba48e4406eb590b5f906a1 python3-devel-3.6.8-21.el7_9.5.x86_64.rpm SHA-256: 85b16c8801738aa13e698e628ee90c2b7e1e64463e0eb754b5faeba99795c97e python3-idle-3.6.8-21.el7_9.5.i686.rpm SHA-256: 9b77cad1291c007437d772c5e7b9b383f1ef33b1cc7d19b980c501f890d77142 python3-idle-3.6.8-21.el7_9.5.x86_64.rpm SHA-256: e4b17fe543593aa326617676adf5aa4db25e2b3641af4308a09f50cf4fcd2fcd python3-libs-3.6.8-21.el7_9.5.i686.rpm SHA-256: 52bc407a436381bb80c588011af86720e140d0afa05af34870ce59857c5064ea python3-libs-3.6.8-21.el7_9.5.x86_64.rpm SHA-256: 4036243ac889c94d350fe05f0e9f06f95a5ac91675aff1eb607a9a33d1bf096f python3-test-3.6.8-21.el7_9.5.i686.rpm SHA-256: abcf8a70a998f539639099ce97dc995737918598ae930908db937952782a3856 python3-test-3.6.8-21.el7_9.5.x86_64.rpm SHA-256: bf86af62aa9eb985c0ad218ad6eecf85d04b438443816dbcec9f9996f358f040 python3-tkinter-3.6.8-21.el7_9.5.i686.rpm SHA-256: e525ed59e1d250d635922785b742b51a6b9242bae519a2adde6063a958f5ec2c python3-tkinter-3.6.8-21.el7_9.5.x86_64.rpm SHA-256: 69cc57522adcd16992b71fde6cbfff8499db18cb48dba90fd7f8c5bd2716378d Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7 SRPM python3-3.6.8-21.el7_9.5.src.rpm SHA-256: 3aec5a474f47c548c2d714c8ac661529bad047eed0dc91b56e0f52f712222b7b s390x python3-3.6.8-21.el7_9.5.s390.rpm SHA-256: ef499da3b65bf65ccfab5435dffe5288e019cea9efc301a8ab508dbd7bbcb5dd python3-3.6.8-21.el7_9.5.s390x.rpm SHA-256: c47f21a3a9348204f11ad451c50bd147e0834478b85879deb0c2f709bb6f3196 python3-debug-3.6.8-21.el7_9.5.s390.rpm SHA-256: 5f18b078e80ee16777ffc061eb9b7c330ea831725f02713a74eddff80aa6af46 python3-debug-3.6.8-21.el7_9.5.s390x.rpm SHA-256: 19e156be73ca39cb2a70a632754183be95d06c238cfe73eeea908f121ce79058 python3-debuginfo-3.6.8-21.el7_9.5.s390.rpm SHA-256: 0a507d58bc9e6ec84a7ae6813e4f2b56a3d0cc12b9babe188e4287c5827c49cc python3-debuginfo-3.6.8-21.el7_9.5.s390.rpm SHA-256: 0a507d58bc9e6ec84a7ae6813e4f2b56a3d0cc12b9babe188e4287c5827c49cc python3-debuginfo-3.6.8-21.el7_9.5.s390x.rpm SHA-256: 5490587b3eda156b5f54d82bb112001cd0c6337d058810acaae02e5afea0e12f python3-debuginfo-3.6.8-21.el7_9.5.s390x.rpm SHA-256: 5490587b3eda156b5f54d82bb112001cd0c6337d058810acaae02e5afea0e12f python3-devel-3.6.8-21.el7_9.5.s390.rpm SHA-256: b9095121431ebf35f2f14d314043713f0dff25662ba4fde943b5718408b024de python3-devel-3.6.8-21.el7_9.5.s390x.rpm SHA-256: 5e65535896fe1fb52d44a0ef48ad5555cca5d7c2b0a501fb6d3c43ebede1cc61 python3-idle-3.6.8-21.el7_9.5.s390.rpm SHA-256: 837e845538f615f11a705824a702bb9763976708a727b990199375a6548f1da9 python3-idle-3.6.8-21.el7_9.5.s390x.rpm SHA-256: bdd1f6b2b43b0e7ee1308952c9aba97b9b6052fb50e1426ccca77aed0d91bf21 python3-libs-3.6.8-21.el7_9.5.s390.rpm SHA-256: 3e0ddb22b26226f161052053dda5f16510913b3c2aaf6875eee2aa0adced07d0 python3-libs-3.6.8-21.el7_9.5.s390x.rpm SHA-256: 510628f7462a60216520fa31f9b7c549577f2bc6c38afa65dc9e16368ad61b9c python3-test-3.6.8-21.el7_9.5.s390.rpm SHA-256: 6e71387f896d0f618e23a8a6cfc677fee9579f29de8b9b8ae47b41db2fd5bbcb python3-test-3.6.8-21.el7_9.5.s390x.rpm SHA-256: 2ad1208650ef3fe2906fc7c5dd77eeda951cab77bf8961134c32d995193b09c5 python3-tkinter-3.6.8-21.el7_9.5.s390.rpm SHA-256: a0216fc51a4dc00fdafbb6c98eb7cc4032bc25e6ed7e828056e9cc195476cc8e python3-tkinter-3.6.8-21.el7_9.5.s390x.rpm SHA-256: 8a757b5a48b616aeeb246c2dd704be720d76076871db4941eca13d3213ae9b3d Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7 SRPM python3-3.6.8-21.el7_9.5.src.rpm SHA-256: 3aec5a474f47c548c2d714c8ac661529bad047eed0dc91b56e0f52f712222b7b ppc64 python3-3.6.8-21.el7_9.5.ppc.rpm SHA-256: 061aa4bce2d5a401beec483a5d2aaf3bb2eebe643c6aa711dda6799685863541 python3-3.6.8-21.el7_9.5.ppc64.rpm SHA-256: 3ff7ab04586a8e73e8d17e6b54112d98802e481e8603d7da438feeab35311793 python3-debug-3.6.8-21.el7_9.5.ppc.rpm SHA-256: a223fbd87668361f873bec608dfe41a4a212ac3706406452cfd762e57f584a4d python3-debug-3.6.8-21.el7_9.5.ppc64.rpm SHA-256: 61ed67cd2c3018b66d9414c6d626860e5fcaf3c40f19751a0441a194aca83bb3 python3-debuginfo-3.6.8-21.el7_9.5.ppc.rpm SHA-256: 4ab25fc7b4e853eda4c47f97a515a168acc877e517182428582e15e8b0d289cc python3-debuginfo-3.6.8-21.el7_9.5.ppc.rpm SHA-256: 4ab25fc7b4e853eda4c47f97a515a168acc877e517182428582e15e8b0d289cc python3-debuginfo-3.6.8-21.el7_9.5.ppc64.rpm SHA-256: 1b2755d5b7783b630a06a674033280574ecd10e1ab47c14f9a2aa439503007d8 python3-debuginfo-3.6.8-21.el7_9.5.ppc64.rpm SHA-256: 1b2755d5b7783b630a06a674033280574ecd10e1ab47c14f9a2aa439503007d8 python3-devel-3.6.8-21.el7_9.5.ppc.rpm SHA-256: e40f337956b1cc2412d77d9ee006aed0ec1fef0e81df4eaaa48e2d5910104261 python3-devel-3.6.8-21.el7_9.5.ppc64.rpm SHA-256: 75d308891b79e12bccf14acf925d55a976a41950fe80e53a45e26d671b8ddc6f python3-idle-3.6.8-21.el7_9.5.ppc.rpm SHA-256: 4a663ccca8c2022dca7a786357a73156ef9a5fe0cd6f6c683b459866cb4c999d python3-idle-3.6.8-21.el7_9.5.ppc64.rpm SHA-256: be12e830a1998d082fa0a2dc1e806d74ec345709bf53db128427c8d205a1ca5b python3-libs-3.6.8-21.el7_9.5.ppc.rpm SHA-256: 9a8ecbfe248f6c45f501100cb26761dee187b2abb196825f046e8224cf674062 python3-libs-3.6.8-21.el7_9.5.ppc64.rpm SHA-256: a840e67b0cce3256cfbf22a59489dddd8af5dae3bc389b38dc88b92b105eabef python3-test-3.6.8-21.el7_9.5.ppc.rpm SHA-256: d6c1ec077dc884b748705a56515c04f0c78a5523320a8ed4c31949c40936f2e0 python3-test-3.6.8-21.el7_9.5.ppc64.rpm SHA-256: 50b63c540e4fb5b50fe6460fc8a2efb02fe18b67a80584524b257e8c32bf1169 python3-tkinter-3.6.8-21.el7_9.5.ppc.rpm SHA-256: 287bf59c34a4a2357b50e871d04e279f96f0cc87dbdae9720dceb0de9826d775 python3-tkinter-3.6.8-21.el7_9.5.ppc64.rpm SHA-256: 585412461b8ec475e63e546ad375c7af65a521e32d53f0d8598c478777cc3a1c Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7 SRPM python3-3.6.8-21.el7_9.5.src.rpm SHA-256: 3aec5a474f47c548c2d714c8ac661529bad047eed0dc91b56e0f52f712222b7b ppc64le python3-3.6.8-21.el7_9.5.ppc64le.rpm SHA-256: aa6f17273ef3f893f1a4c29b491d895c45597f609e906a46d4a4fc6ef719b27a python3-debug-3.6.8-21.el7_9.5.ppc64le.rpm SHA-256: 7fdad9c28f82a62fc4be6dee46e7eaa72f915822503df5b756d8e09096158946 python3-debuginfo-3.6.8-21.el7_9.5.ppc64le.rpm SHA-256: 51e6dc804b83713c31230f409b896e3c5b42465a7f4ab5785a9b0fd355cbedce python3-debuginfo-3.6.8-21.el7_9.5.ppc64le.rpm SHA-256: 51e6dc804b83713c31230f409b896e3c5b42465a7f4ab5785a9b0fd355cbedce python3-devel-3.6.8-21.el7_9.5.ppc64le.rpm SHA-256: 82069ea4f6f521c84f2786217e47eaa787fbf099d502bb8865564567fa14210f python3-idle-3.6.8-21.el7_9.5.ppc64le.rpm SHA-256: 1f52d7116d8b10be1536c9fbc3903bcd0ca2682c90c4ec12b4329cbc7a78f352 python3-libs-3.6.8-21.el7_9.5.ppc64le.rpm SHA-256: 3154d277f341e5e9904b2e303971897a772de79f1ca8dc8d1d3035b85e21db64 p