Red Hat Product Errata RHSA-2026:14652 - Security Advisory Issued: 2026-05-07 Updated: 2026-05-07 RHSA-2026:14652 - Security Advisory Overview Updated Packages Synopsis Important: python3.11 security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for python3.11 is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules (CVE-2026-6100) python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API (CVE-2026-4786) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64 Red Hat Enterprise Linux Server - AUS 9.6 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64 Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.6 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.6 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.6 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.6 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.6 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.6 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.6 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.6 s390x Fixes BZ - 2457932 - CVE-2026-6100 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules BZ - 2458049 - CVE-2026-4786 python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API CVEs CVE-2026-4786 CVE-2026-6100 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 SRPM python3.11-3.11.11-2.el9_6.7.src.rpm SHA-256: f8c7b8e9dd59c3a1b3b95e8b8c7eb5b8d6ae814db0d9e928f2c4591c5e297489 x86_64 python3.11-3.11.11-2.el9_6.7.x86_64.rpm SHA-256: ec8b414d5689c69d4f989ca6048de474dca44b2f4d357aa1c2ea6ccd0c41b8b5 python3.11-debuginfo-3.11.11-2.el9_6.7.i686.rpm SHA-256: cbf1eb29b5f492948d1453dc55e1dd95365e7218e72f5fa2ed2f1a7fb39cd2c4 python3.11-debuginfo-3.11.11-2.el9_6.7.x86_64.rpm SHA-256: 011906ef2eb3cf339a17a1395e731e1add71ebb05304165f1825089311f3e7a0 python3.11-debugsource-3.11.11-2.el9_6.7.i686.rpm SHA-256: 9c8a2ce8ef30e42b7b0bc50427e922b4423e8a69fcae9b3d7f1d414d4073674c python3.11-debugsource-3.11.11-2.el9_6.7.x86_64.rpm SHA-256: d9af393ef5b0bb926f5cdca0ba4d7ed792c70037f4353d870e76ae07990515bf python3.11-devel-3.11.11-2.el9_6.7.i686.rpm SHA-256: baf4d34fb51d45432d2028da25438ab64cac392e554f9683235bffc5c4317037 python3.11-devel-3.11.11-2.el9_6.7.x86_64.rpm SHA-256: d7264b78a1b871b61f0d81bc7bab951bf784388b2edaa629b95851a23f36b88d python3.11-libs-3.11.11-2.el9_6.7.i686.rpm SHA-256: 9e6cac3696c95da63fa4465f394d2980967c09fc4cdd5634ebe95eef4020f23a python3.11-libs-3.11.11-2.el9_6.7.x86_64.rpm SHA-256: b5a050f75ba7095c0e08c4362d3dad11e25a0a04dba823c7a6327220781ec74b python3.11-tkinter-3.11.11-2.el9_6.7.x86_64.rpm SHA-256: 2a853206a6dbec8f229d17f694702e760261c9c52ca0fab1ea51e6c6f06a0769 Red Hat Enterprise Linux Server - AUS 9.6 SRPM python3.11-3.11.11-2.el9_6.7.src.rpm SHA-256: f8c7b8e9dd59c3a1b3b95e8b8c7eb5b8d6ae814db0d9e928f2c4591c5e297489 x86_64 python3.11-3.11.11-2.el9_6.7.x86_64.rpm SHA-256: ec8b414d5689c69d4f989ca6048de474dca44b2f4d357aa1c2ea6ccd0c41b8b5 python3.11-debuginfo-3.11.11-2.el9_6.7.i686.rpm SHA-256: cbf1eb29b5f492948d1453dc55e1dd95365e7218e72f5fa2ed2f1a7fb39cd2c4 python3.11-debuginfo-3.11.11-2.el9_6.7.x86_64.rpm SHA-256: 011906ef2eb3cf339a17a1395e731e1add71ebb05304165f1825089311f3e7a0 python3.11-debugsource-3.11.11-2.el9_6.7.i686.rpm SHA-256: 9c8a2ce8ef30e42b7b0bc50427e922b4423e8a69fcae9b3d7f1d414d4073674c python3.11-debugsource-3.11.11-2.el9_6.7.x86_64.rpm SHA-256: d9af393ef5b0bb926f5cdca0ba4d7ed792c70037f4353d870e76ae07990515bf python3.11-devel-3.11.11-2.el9_6.7.i686.rpm SHA-256: baf4d34fb51d45432d2028da25438ab64cac392e554f9683235bffc5c4317037 python3.11-devel-3.11.11-2.el9_6.7.x86_64.rpm SHA-256: d7264b78a1b871b61f0d81bc7bab951bf784388b2edaa629b95851a23f36b88d python3.11-libs-3.11.11-2.el9_6.7.i686.rpm SHA-256: 9e6cac3696c95da63fa4465f394d2980967c09fc4cdd5634ebe95eef4020f23a python3.11-libs-3.11.11-2.el9_6.7.x86_64.rpm SHA-256: b5a050f75ba7095c0e08c4362d3dad11e25a0a04dba823c7a6327220781ec74b python3.11-tkinter-3.11.11-2.el9_6.7.x86_64.rpm SHA-256: 2a853206a6dbec8f229d17f694702e760261c9c52ca0fab1ea51e6c6f06a0769 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 SRPM python3.11-3.11.11-2.el9_6.7.src.rpm SHA-256: f8c7b8e9dd59c3a1b3b95e8b8c7eb5b8d6ae814db0d9e928f2c4591c5e297489 s390x python3.11-3.11.11-2.el9_6.7.s390x.rpm SHA-256: ad635984e6bb7f464c619490283c6080c1de352f77437771180e6a83a37c48a8 python3.11-debuginfo-3.11.11-2.el9_6.7.s390x.rpm SHA-256: d0e28b7fb87ecd5c12ee068166491ef740f5a16f4bac79e1ac87f211fa7aa1fc python3.11-debugsource-3.11.11-2.el9_6.7.s390x.rpm SHA-256: 0a681b22d0a06d726ac6a0c1eea8699114271a8785f407d8eb8733659f3d251f python3.11-devel-3.11.11-2.el9_6.7.s390x.rpm SHA-256: fcb842f6045a8e3c0723857b4b56ce47ab680bbcc000f9e47accc37271e97ab5 python3.11-libs-3.11.11-2.el9_6.7.s390x.rpm SHA-256: 19eb3b3505d22b59d87658ab78309b828c2419504dff688813143ee8ee90cbcd python3.11-tkinter-3.11.11-2.el9_6.7.s390x.rpm SHA-256: 1eebd78da5ee1404a0836e6acd36988295364b423e848926a4f2acc218fbc43f Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 SRPM python3.11-3.11.11-2.el9_6.7.src.rpm SHA-256: f8c7b8e9dd59c3a1b3b95e8b8c7eb5b8d6ae814db0d9e928f2c4591c5e297489 ppc64le python3.11-3.11.11-2.el9_6.7.ppc64le.rpm SHA-256: 7553f455f9fed482ca54d5f7572cc8dccb73483da3c8a13bd759f5bf9bcbe220 python3.11-debuginfo-3.11.11-2.el9_6.7.ppc64le.rpm SHA-256: d5594be391d2348498ff580db774d02b2c072be9fd6ea33c0f7fad6ebc0adeae python3.11-debugsource-3.11.11-2.el9_6.7.ppc64le.rpm SHA-256: 1215177e91fe4834f6a29e17014d046def1115794833a707ba85c7572a2f3418 python3.11-devel-3.11.11-2.el9_6.7.ppc64le.rpm SHA-256: c8b26aefc426fedab4053a73d65614355f09df5a9b99fd66f4cc761b9d206885 python3.11-libs-3.11.11-2.el9_6.7.ppc64le.rpm SHA-256: c9170c57fb462aace5593cbe7829e3993d27491e7bddd11d69110eb8ca0cd7f2 python3.11-tkinter-3.11.11-2.el9_6.7.ppc64le.rpm SHA-256: c225c2102aeda57f510aa87b7f64983a120742434ae98b89a81a32c01a52c4a2 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 SRPM python3.11-3.11.11-2.el9_6.7.src.rpm SHA-256: f8c7b8e9dd59c3a1b3b95e8b8c7eb5b8d6ae814db0d9e928f2c4591c5e297489 aarch64 python3.11-3.11.11-2.el9_6.7.aarch64.rpm SHA-256: 1bda5cd5595acbe69691678e645704c59b1cbe6fd2bb9a4b93421e44f016072c python3.11-debuginfo-3.11.11-2.el9_6.7.aarch64.rpm SHA-256: 667321c074083af966def01921157208ae2500c85a18589fad2825150eb129ea python3.11-debugsource-3.11.11-2.el9_6.7.aarch64.rpm SHA-256: 8d17915b35db2b537f8eaef0bc48a7b6ab8010cd3496b7f03c76c8a9a0c003d7 python3.11-devel-3.11.11-2.el9_6.7.aarch64.rpm SHA-256: a43b53d59e29f99dc7b454747b309c9249071a58b2c80d10c08977897c398cd8 python3.11-libs-3.11.11-2.el9_6.7.aarch64.rpm SHA-256: 1ecd6007f70450705c592a5a6df10105394d407cab5460de65e89c9061e901b1 python3.11-tkinter-3.11.11-2.el9_6.7.aarch64.rpm SHA-256: 1fe6f6cd4f3160891bb7d186774c1415a4d82c51a29d9c6d8a3342b5c4576363 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 SRPM python3.11-3.11.11-2.el9_6.7.src.rpm SHA-256: f8c7b8e9dd59c3a1b3b95e8b8c7eb5b8d6ae814db0d9e928f2c4591c5e297489 ppc64le python3.11-3.11.11-2.el9_6.7.ppc64le.rpm SHA-256: 7553f455f9fed482ca54d5f7572cc8dccb73483da3c8a13bd759f5bf9bcbe220 python3.11-debuginfo-3.11.11-2.el9_6.7.ppc64le.rpm SHA-256: d5594be391d2348498ff580db774d02b2c072be9fd6ea33c0f7fad6ebc0adeae python3.11-debugsource-3.11.11-2.el9_6.7.ppc64le.rpm SHA-256: 1215177e91fe4834f6a29e17014d046def1115794833a707ba85c7572a2f3418 python3.11-devel-3.11.11-2.el9_6.7.ppc64le.rpm SHA-256: c8b26aefc426fedab4053a73d65614355f09df5a9b99fd66f4cc761b9d206885 python3.11-libs-3.11.11-2.el9_6.7.ppc64le.rpm SHA-256: c9170c57fb462aace5593cbe7829e3993d27491e7bddd11d69110eb8ca0cd7f2 python3.11-tkinter-3.11.11-2.el9_6.7.ppc64le.rpm SHA-256: c225c2102aeda57f510aa87b7f64983a120742434ae98b89a81a32c01a52c4a2 Red Hat Enterprise Linux for x86_64 - Update Services for SAP