Red Hat Product Errata RHSA-2026:14656 - Security Advisory Issued: 2026-05-07 Updated: 2026-05-07 RHSA-2026:14656 - Security Advisory Overview Updated Packages Synopsis Important: python3.12 security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for python3.12 is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules (CVE-2026-6100) python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API (CVE-2026-4786) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64 Red Hat Enterprise Linux Server - AUS 9.6 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64 Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.6 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.6 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.6 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.6 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.6 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.6 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.6 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.6 s390x Fixes BZ - 2457932 - CVE-2026-6100 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules BZ - 2458049 - CVE-2026-4786 python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API CVEs CVE-2026-4786 CVE-2026-6100 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 SRPM python3.12-3.12.9-1.el9_6.8.src.rpm SHA-256: 5d6389de4ea94ca620306856c831bd840b77d86dd80536826d0a576ec06f6866 x86_64 python3.12-3.12.9-1.el9_6.8.x86_64.rpm SHA-256: e4e816e620522925e5cb7d91864b27de63d6c13c83549ff4a7dc0011c24e0ee0 python3.12-debuginfo-3.12.9-1.el9_6.8.i686.rpm SHA-256: 2a03c66c69ba3d81d5a8ed80e4dd91f62d11853f5d0a7434f783acc59f265c00 python3.12-debuginfo-3.12.9-1.el9_6.8.x86_64.rpm SHA-256: c3ed1d8a147029a877e08ed15355ea235818b53a5ad30d1b3c3f1b01107dba60 python3.12-debugsource-3.12.9-1.el9_6.8.i686.rpm SHA-256: 7017555d6fc06970910eca492785d91909b34a8195c831b68398bfe987b6b7f2 python3.12-debugsource-3.12.9-1.el9_6.8.x86_64.rpm SHA-256: 6c771b0a311d1df7f9b9ed038806041b4e62d97083127dd71955ee8c6e7859ee python3.12-devel-3.12.9-1.el9_6.8.i686.rpm SHA-256: 6d25218ea7ab876723a7afd171aa343610bb76c29ab82b0241d2d620dd331119 python3.12-devel-3.12.9-1.el9_6.8.x86_64.rpm SHA-256: 2e84f7e61614fddb807735d957095862a6f8ab6903fc8a71cd2015747bc0a2b4 python3.12-libs-3.12.9-1.el9_6.8.i686.rpm SHA-256: 13df942e0c04d3023b10fbffb6715bd8eef1e20ddab6dd75ff78f20758459c6d python3.12-libs-3.12.9-1.el9_6.8.x86_64.rpm SHA-256: 8ffc9c6099a66babae96c1282d9e1f4948126967b80a2e56773b24d1be78457d python3.12-tkinter-3.12.9-1.el9_6.8.x86_64.rpm SHA-256: ecbe547c0c8ea5aa18f654e7845ea04da9856c1adc2abbd6ea0943a127d85b7a Red Hat Enterprise Linux Server - AUS 9.6 SRPM python3.12-3.12.9-1.el9_6.8.src.rpm SHA-256: 5d6389de4ea94ca620306856c831bd840b77d86dd80536826d0a576ec06f6866 x86_64 python3.12-3.12.9-1.el9_6.8.x86_64.rpm SHA-256: e4e816e620522925e5cb7d91864b27de63d6c13c83549ff4a7dc0011c24e0ee0 python3.12-debuginfo-3.12.9-1.el9_6.8.i686.rpm SHA-256: 2a03c66c69ba3d81d5a8ed80e4dd91f62d11853f5d0a7434f783acc59f265c00 python3.12-debuginfo-3.12.9-1.el9_6.8.x86_64.rpm SHA-256: c3ed1d8a147029a877e08ed15355ea235818b53a5ad30d1b3c3f1b01107dba60 python3.12-debugsource-3.12.9-1.el9_6.8.i686.rpm SHA-256: 7017555d6fc06970910eca492785d91909b34a8195c831b68398bfe987b6b7f2 python3.12-debugsource-3.12.9-1.el9_6.8.x86_64.rpm SHA-256: 6c771b0a311d1df7f9b9ed038806041b4e62d97083127dd71955ee8c6e7859ee python3.12-devel-3.12.9-1.el9_6.8.i686.rpm SHA-256: 6d25218ea7ab876723a7afd171aa343610bb76c29ab82b0241d2d620dd331119 python3.12-devel-3.12.9-1.el9_6.8.x86_64.rpm SHA-256: 2e84f7e61614fddb807735d957095862a6f8ab6903fc8a71cd2015747bc0a2b4 python3.12-libs-3.12.9-1.el9_6.8.i686.rpm SHA-256: 13df942e0c04d3023b10fbffb6715bd8eef1e20ddab6dd75ff78f20758459c6d python3.12-libs-3.12.9-1.el9_6.8.x86_64.rpm SHA-256: 8ffc9c6099a66babae96c1282d9e1f4948126967b80a2e56773b24d1be78457d python3.12-tkinter-3.12.9-1.el9_6.8.x86_64.rpm SHA-256: ecbe547c0c8ea5aa18f654e7845ea04da9856c1adc2abbd6ea0943a127d85b7a Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 SRPM python3.12-3.12.9-1.el9_6.8.src.rpm SHA-256: 5d6389de4ea94ca620306856c831bd840b77d86dd80536826d0a576ec06f6866 s390x python3.12-3.12.9-1.el9_6.8.s390x.rpm SHA-256: 85dffd7a9887cd0344504f544201cec51ca55c9bd96392dd0f28d331a8a4e578 python3.12-debuginfo-3.12.9-1.el9_6.8.s390x.rpm SHA-256: 7540e5a8fcb58a4948eb59a32eaf8ed7b38241e0ad4e7dd876c4b567ef20448b python3.12-debugsource-3.12.9-1.el9_6.8.s390x.rpm SHA-256: e9d11b4226d598bb9ef4cbc1d3326bfbb6905b0eb4f63b6797d6f8beb9d0f072 python3.12-devel-3.12.9-1.el9_6.8.s390x.rpm SHA-256: a633ce01dc45ed09788fdd5c07d1f955bfe07b3872406253b3d635c2c3a28577 python3.12-libs-3.12.9-1.el9_6.8.s390x.rpm SHA-256: 220e024a2b57bf87a000303f18ebb07e8d177575cecca9de3bdc4da57de2022a python3.12-tkinter-3.12.9-1.el9_6.8.s390x.rpm SHA-256: c1bab8ec2cb68f0e4b39b18fc25bd723fcfcf7070fa72b0861866f75a46e978e Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 SRPM python3.12-3.12.9-1.el9_6.8.src.rpm SHA-256: 5d6389de4ea94ca620306856c831bd840b77d86dd80536826d0a576ec06f6866 ppc64le python3.12-3.12.9-1.el9_6.8.ppc64le.rpm SHA-256: 726d6f9635761cbc1b68d9ea3dc64440dd2cc051ac224c02527e91e04e1a8414 python3.12-debuginfo-3.12.9-1.el9_6.8.ppc64le.rpm SHA-256: 8670449b75acff6fcfab19b2cd01ea750eca3bb53cd170e239d71de9cedeb6af python3.12-debugsource-3.12.9-1.el9_6.8.ppc64le.rpm SHA-256: c1bd281714656330a86981ccc4ce46af2c1a2a7b3fb07407e9949bf24ce26b31 python3.12-devel-3.12.9-1.el9_6.8.ppc64le.rpm SHA-256: 0a802f43261a2a9a6451be1a22fada25965b12ce4c95041f45368e58719b0829 python3.12-libs-3.12.9-1.el9_6.8.ppc64le.rpm SHA-256: 19e4d1ab1620b324d67e39f81db828fffc3387c108a037a6eeb437200de61646 python3.12-tkinter-3.12.9-1.el9_6.8.ppc64le.rpm SHA-256: d765b08163f7ed0236f5fb1a5f78af00558e8bd0d1453cf4be2e128c0d055a14 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 SRPM python3.12-3.12.9-1.el9_6.8.src.rpm SHA-256: 5d6389de4ea94ca620306856c831bd840b77d86dd80536826d0a576ec06f6866 aarch64 python3.12-3.12.9-1.el9_6.8.aarch64.rpm SHA-256: 156e2f25baeb792f4a4325e9c1c9192ab6ea84b600a45e47fa1edd0480d409fe python3.12-debuginfo-3.12.9-1.el9_6.8.aarch64.rpm SHA-256: 2fec443c1425f1193eda7074b89723d01dba30e723028d57f9718bcbc99181ff python3.12-debugsource-3.12.9-1.el9_6.8.aarch64.rpm SHA-256: 8bb2065a0e9eb4a3eee5040dc4c0c6795f2e36a8c0cdfb439d641ec0d357af7e python3.12-devel-3.12.9-1.el9_6.8.aarch64.rpm SHA-256: 0e0cebc948cf14ab8df801fe4897cfabd7d57d03f0e8efd5ff19011c21840131 python3.12-libs-3.12.9-1.el9_6.8.aarch64.rpm SHA-256: 6f75eddc7cf04993e2b9ff28479de5bf657b7632623912577525b91867639ddf python3.12-tkinter-3.12.9-1.el9_6.8.aarch64.rpm SHA-256: 299fa21397d8db29358465fcf10eaf9b10a39254ef097871f83fd7370bb078ed Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 SRPM python3.12-3.12.9-1.el9_6.8.src.rpm SHA-256: 5d6389de4ea94ca620306856c831bd840b77d86dd80536826d0a576ec06f6866 ppc64le python3.12-3.12.9-1.el9_6.8.ppc64le.rpm SHA-256: 726d6f9635761cbc1b68d9ea3dc64440dd2cc051ac224c02527e91e04e1a8414 python3.12-debuginfo-3.12.9-1.el9_6.8.ppc64le.rpm SHA-256: 8670449b75acff6fcfab19b2cd01ea750eca3bb53cd170e239d71de9cedeb6af python3.12-debugsource-3.12.9-1.el9_6.8.ppc64le.rpm SHA-256: c1bd281714656330a86981ccc4ce46af2c1a2a7b3fb07407e9949bf24ce26b31 python3.12-devel-3.12.9-1.el9_6.8.ppc64le.rpm SHA-256: 0a802f43261a2a9a6451be1a22fada25965b12ce4c95041f45368e58719b0829 python3.12-libs-3.12.9-1.el9_6.8.ppc64le.rpm SHA-256: 19e4d1ab1620b324d67e39f81db828fffc3387c108a037a6eeb437200de61646 python3.12-tkinter-3.12.9-1.el9_6.8.ppc64le.rpm SHA-256: d765b08163f7ed0236f5fb1a5f78af00558e8bd0d1453cf4be2e128c0d055a14 Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 SRPM python3.12-3.12.9-1.el9_6.8.sr