Red Hat Product Errata RHSA-2026:14653 - Security Advisory Issued: 2026-05-07 Updated: 2026-05-07 RHSA-2026:14653 - Security Advisory Overview Updated Packages Synopsis Important: python3.11 security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for python3.11 is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules (CVE-2026-6100) python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API (CVE-2026-4786) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 x86_64 Red Hat Enterprise Linux Server - AUS 9.4 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64 Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.4 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.4 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.4 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.4 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.4 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.4 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.4 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.4 s390x Fixes BZ - 2457932 - CVE-2026-6100 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules BZ - 2458049 - CVE-2026-4786 python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API CVEs CVE-2026-4786 CVE-2026-6100 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 SRPM python3.11-3.11.7-1.el9_4.13.src.rpm SHA-256: ab78c3e5971e1849fa2a9563921c96721a71b40410f1af38ca436de3a92a4980 x86_64 python3.11-3.11.7-1.el9_4.13.x86_64.rpm SHA-256: 588f8f3d854bcdda92c6b74ba3e65238925f7dc92dd8d08e63697b0e1a6d7d73 python3.11-debuginfo-3.11.7-1.el9_4.13.i686.rpm SHA-256: 112cc7aa3ea6b2d2f21c9d2a1c651e7f646df73ddb7a1710b718cecfdf9f9a06 python3.11-debuginfo-3.11.7-1.el9_4.13.x86_64.rpm SHA-256: b94977872a284b9626e784c17ea92d051a0e1b892bbe547a7129aa7752d8346a python3.11-debugsource-3.11.7-1.el9_4.13.i686.rpm SHA-256: 31235c768a378e21aed1be400ffef79c0dc8484cbe2726e60c9a7b91affd54da python3.11-debugsource-3.11.7-1.el9_4.13.x86_64.rpm SHA-256: 0f8fba398a316a20d0456eb5beaf0a9cff68419f2609a8572a097dc32f5d4e70 python3.11-devel-3.11.7-1.el9_4.13.i686.rpm SHA-256: 3132ba51f71f536a8c8176068cc546364d036ea44d62cecf0b89d72817b93808 python3.11-devel-3.11.7-1.el9_4.13.x86_64.rpm SHA-256: ea0eb436b5ba170e101794d27ec8e564fac6eeddc152b8547ba45cc6f1d30115 python3.11-libs-3.11.7-1.el9_4.13.i686.rpm SHA-256: c751a2f2045a8201c3117d821f5709073af1c40bf477b7486e391f6664f3c1f6 python3.11-libs-3.11.7-1.el9_4.13.x86_64.rpm SHA-256: 83acd51669e92adea0b5acc16fdafe50089b5b2272c4f54ada939246b93b668c python3.11-tkinter-3.11.7-1.el9_4.13.x86_64.rpm SHA-256: 0d6343b5a3f9ed1f1c773eff34e515a6ab512c7a7b413434394f7a33199f5196 Red Hat Enterprise Linux Server - AUS 9.4 SRPM python3.11-3.11.7-1.el9_4.13.src.rpm SHA-256: ab78c3e5971e1849fa2a9563921c96721a71b40410f1af38ca436de3a92a4980 x86_64 python3.11-3.11.7-1.el9_4.13.x86_64.rpm SHA-256: 588f8f3d854bcdda92c6b74ba3e65238925f7dc92dd8d08e63697b0e1a6d7d73 python3.11-debuginfo-3.11.7-1.el9_4.13.i686.rpm SHA-256: 112cc7aa3ea6b2d2f21c9d2a1c651e7f646df73ddb7a1710b718cecfdf9f9a06 python3.11-debuginfo-3.11.7-1.el9_4.13.x86_64.rpm SHA-256: b94977872a284b9626e784c17ea92d051a0e1b892bbe547a7129aa7752d8346a python3.11-debugsource-3.11.7-1.el9_4.13.i686.rpm SHA-256: 31235c768a378e21aed1be400ffef79c0dc8484cbe2726e60c9a7b91affd54da python3.11-debugsource-3.11.7-1.el9_4.13.x86_64.rpm SHA-256: 0f8fba398a316a20d0456eb5beaf0a9cff68419f2609a8572a097dc32f5d4e70 python3.11-devel-3.11.7-1.el9_4.13.i686.rpm SHA-256: 3132ba51f71f536a8c8176068cc546364d036ea44d62cecf0b89d72817b93808 python3.11-devel-3.11.7-1.el9_4.13.x86_64.rpm SHA-256: ea0eb436b5ba170e101794d27ec8e564fac6eeddc152b8547ba45cc6f1d30115 python3.11-libs-3.11.7-1.el9_4.13.i686.rpm SHA-256: c751a2f2045a8201c3117d821f5709073af1c40bf477b7486e391f6664f3c1f6 python3.11-libs-3.11.7-1.el9_4.13.x86_64.rpm SHA-256: 83acd51669e92adea0b5acc16fdafe50089b5b2272c4f54ada939246b93b668c python3.11-tkinter-3.11.7-1.el9_4.13.x86_64.rpm SHA-256: 0d6343b5a3f9ed1f1c773eff34e515a6ab512c7a7b413434394f7a33199f5196 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 SRPM python3.11-3.11.7-1.el9_4.13.src.rpm SHA-256: ab78c3e5971e1849fa2a9563921c96721a71b40410f1af38ca436de3a92a4980 s390x python3.11-3.11.7-1.el9_4.13.s390x.rpm SHA-256: ad802d377ce47ba2538dd66bb974e028767ff27729fd2a53ae0c03a09facfebc python3.11-debuginfo-3.11.7-1.el9_4.13.s390x.rpm SHA-256: d6940d95e3f67444f9be90d108cd2383df9e5495c5d1344526db0a5a772e57b7 python3.11-debugsource-3.11.7-1.el9_4.13.s390x.rpm SHA-256: 795d511ed6bf548ef12575d78fec18f9f44fab2539bcd90de5bcdbaf11c3b01d python3.11-devel-3.11.7-1.el9_4.13.s390x.rpm SHA-256: ca5c4fdd483ff006b45b5126f6af85ed01655567a6171b0b1a9bb2a36ab08a90 python3.11-libs-3.11.7-1.el9_4.13.s390x.rpm SHA-256: a43983ae5e44fb31fdc02ba45945b0b18b64a86ff23b133f66d9c82d3d2c0064 python3.11-tkinter-3.11.7-1.el9_4.13.s390x.rpm SHA-256: ef650a3e93cf7af8b8d8af99e3dae56eef3c0a7f7b7ee2d0b2d53c401cdb76bf Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 SRPM python3.11-3.11.7-1.el9_4.13.src.rpm SHA-256: ab78c3e5971e1849fa2a9563921c96721a71b40410f1af38ca436de3a92a4980 ppc64le python3.11-3.11.7-1.el9_4.13.ppc64le.rpm SHA-256: f0390365bb97c866decfd64d44899d6071ac84b9c203c86c84627d0e0327e147 python3.11-debuginfo-3.11.7-1.el9_4.13.ppc64le.rpm SHA-256: dd47350e93339204ccb54ac6f57ec1e57c51198876f117298c69cc96ae328f96 python3.11-debugsource-3.11.7-1.el9_4.13.ppc64le.rpm SHA-256: db5a5096b64822cf702ba2ac4eb0a6a70550f94c5997d8fd6ec1be3151a09115 python3.11-devel-3.11.7-1.el9_4.13.ppc64le.rpm SHA-256: b0da8eb335076bacb58f21713121c6889bbcd310421f92a8c93c914db8b872a0 python3.11-libs-3.11.7-1.el9_4.13.ppc64le.rpm SHA-256: d1a633ffd3a0bb46005e6783c4e6555f77f7a0e28301b8ee8f94b3f10927f1a6 python3.11-tkinter-3.11.7-1.el9_4.13.ppc64le.rpm SHA-256: 428c890ecaa8cd39bf29e2799717908a6233022752920c1153b703e01b50ab77 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 SRPM python3.11-3.11.7-1.el9_4.13.src.rpm SHA-256: ab78c3e5971e1849fa2a9563921c96721a71b40410f1af38ca436de3a92a4980 aarch64 python3.11-3.11.7-1.el9_4.13.aarch64.rpm SHA-256: 470b79ebe7b2b4efe84d9edce6eb288ae772c9e5944419ec1c3c0d29c65ea00c python3.11-debuginfo-3.11.7-1.el9_4.13.aarch64.rpm SHA-256: 265de0c3dd667072150d6d3aae5d73fc297d72fddc474ba740d84bfa7008f532 python3.11-debugsource-3.11.7-1.el9_4.13.aarch64.rpm SHA-256: 530cb3c47d2151852ecce90df77830f287b428e8ef6157473ff91cdae285fdc3 python3.11-devel-3.11.7-1.el9_4.13.aarch64.rpm SHA-256: 5b095fe217642ddcbf118cf11af8d96b95d6e6df17d3b672019a68f0d410ca73 python3.11-libs-3.11.7-1.el9_4.13.aarch64.rpm SHA-256: 19baff9c438d5652c5dbf4f214a359a5c44d1f57c771ba9086b563de5ba08915 python3.11-tkinter-3.11.7-1.el9_4.13.aarch64.rpm SHA-256: 4f1becf2b7b570a94fedfa92749d304fe8878e81232ac193748efc2a4f3eb4ee Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 SRPM python3.11-3.11.7-1.el9_4.13.src.rpm SHA-256: ab78c3e5971e1849fa2a9563921c96721a71b40410f1af38ca436de3a92a4980 ppc64le python3.11-3.11.7-1.el9_4.13.ppc64le.rpm SHA-256: f0390365bb97c866decfd64d44899d6071ac84b9c203c86c84627d0e0327e147 python3.11-debuginfo-3.11.7-1.el9_4.13.ppc64le.rpm SHA-256: dd47350e93339204ccb54ac6f57ec1e57c51198876f117298c69cc96ae328f96 python3.11-debugsource-3.11.7-1.el9_4.13.ppc64le.rpm SHA-256: db5a5096b64822cf702ba2ac4eb0a6a70550f94c5997d8fd6ec1be3151a09115 python3.11-devel-3.11.7-1.el9_4.13.ppc64le.rpm SHA-256: b0da8eb335076bacb58f21713121c6889bbcd310421f92a8c93c914db8b872a0 python3.11-libs-3.11.7-1.el9_4.13.ppc64le.rpm SHA-256: d1a633ffd3a0bb46005e6783c4e6555f77f7a0e28301b8ee8f94b3f10927f1a6 python3.11-tkinter-3.11.7-1.el9_4.13.ppc64le.rpm SHA-256: 428c890ecaa8cd39bf29e2799717908a6233022752920c1153b703e01b50ab77 Red Hat Enterprise Linux for x86_64 - Update Services for SAP