- What: Security update for Python 3.12 in Red Hat Enterprise Linux
- Impact: Systems using Python 3.12 may be vulnerable to security issues
Red Hat Product Errata RHSA-2026:17525 - Security Advisory Issued: 2026-05-14 Updated: 2026-05-14 RHSA-2026:17525 - Security Advisory Overview Updated Packages Synopsis Important: python3.12 security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for python3.12 is now available for Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules (CVE-2026-6100) python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API (CVE-2026-4786) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 x86_64 Red Hat Enterprise Linux Server - AUS 9.4 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64 Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.4 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.4 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.4 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.4 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.4 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.4 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.4 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.4 s390x Fixes BZ - 2457932 - CVE-2026-6100 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules BZ - 2458049 - CVE-2026-4786 python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API CVEs CVE-2026-4786 CVE-2026-6100 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 SRPM python3.12-3.12.1-4.el9_4.13.src.rpm SHA-256: 4d410ae6f71c6ef16d7b3ed44d43271f7ff52ec6ca8e93865097a7ff8168aefc x86_64 python3.12-3.12.1-4.el9_4.13.x86_64.rpm SHA-256: 02cc0a530556467dbaa5761e23e4e8e47e79b4cb6fe66d1ee1ecea0e7a686c5c python3.12-debuginfo-3.12.1-4.el9_4.13.i686.rpm SHA-256: 1abeff3a8faf530df8cb1f27273cfcdda61baf4070d7a163df4f0ecd0a223862 python3.12-debuginfo-3.12.1-4.el9_4.13.x86_64.rpm SHA-256: 3f414806d0df399ac707bf1491fa75c174bbdc6787e9bfeb0815058595308e8c python3.12-debugsource-3.12.1-4.el9_4.13.i686.rpm SHA-256: a384d7f90eeca2623ba466a16df354bd2749806e64f9422f068f5a990343a172 python3.12-debugsource-3.12.1-4.el9_4.13.x86_64.rpm SHA-256: cc0476bda2a3758d4339e760f80da8f802e7a18b0a96a6a65aa022cb69703921 python3.12-devel-3.12.1-4.el9_4.13.i686.rpm SHA-256: 058965c9d4b69b6a43b612ae8e79d6426560b2a6ac606e1ec4ab9365b0359fc7 python3.12-devel-3.12.1-4.el9_4.13.x86_64.rpm SHA-256: ad4102f578ac6340a0eb1170ef44cc726d9d2efbd69a249e5657a4500d220732 python3.12-libs-3.12.1-4.el9_4.13.i686.rpm SHA-256: 394176ee26d7d0833c0a0c3e2692ec7bdb784684f6b55ca24f68c15d0a3840eb python3.12-libs-3.12.1-4.el9_4.13.x86_64.rpm SHA-256: ec36951d584e765993b5427d5214980e924ab4c717871b4f3ccdce46552de661 python3.12-tkinter-3.12.1-4.el9_4.13.x86_64.rpm SHA-256: cc45cbc1196abeb3aecf5f766ee38d5fda87908148613fae885348b27ba0dd45 Red Hat Enterprise Linux Server - AUS 9.4 SRPM python3.12-3.12.1-4.el9_4.13.src.rpm SHA-256: 4d410ae6f71c6ef16d7b3ed44d43271f7ff52ec6ca8e93865097a7ff8168aefc x86_64 python3.12-3.12.1-4.el9_4.13.x86_64.rpm SHA-256: 02cc0a530556467dbaa5761e23e4e8e47e79b4cb6fe66d1ee1ecea0e7a686c5c python3.12-debuginfo-3.12.1-4.el9_4.13.i686.rpm SHA-256: 1abeff3a8faf530df8cb1f27273cfcdda61baf4070d7a163df4f0ecd0a223862 python3.12-debuginfo-3.12.1-4.el9_4.13.x86_64.rpm SHA-256: 3f414806d0df399ac707bf1491fa75c174bbdc6787e9bfeb0815058595308e8c python3.12-debugsource-3.12.1-4.el9_4.13.i686.rpm SHA-256: a384d7f90eeca2623ba466a16df354bd2749806e64f9422f068f5a990343a172 python3.12-debugsource-3.12.1-4.el9_4.13.x86_64.rpm SHA-256: cc0476bda2a3758d4339e760f80da8f802e7a18b0a96a6a65aa022cb69703921 python3.12-devel-3.12.1-4.el9_4.13.i686.rpm SHA-256: 058965c9d4b69b6a43b612ae8e79d6426560b2a6ac606e1ec4ab9365b0359fc7 python3.12-devel-3.12.1-4.el9_4.13.x86_64.rpm SHA-256: ad4102f578ac6340a0eb1170ef44cc726d9d2efbd69a249e5657a4500d220732 python3.12-libs-3.12.1-4.el9_4.13.i686.rpm SHA-256: 394176ee26d7d0833c0a0c3e2692ec7bdb784684f6b55ca24f68c15d0a3840eb python3.12-libs-3.12.1-4.el9_4.13.x86_64.rpm SHA-256: ec36951d584e765993b5427d5214980e924ab4c717871b4f3ccdce46552de661 python3.12-tkinter-3.12.1-4.el9_4.13.x86_64.rpm SHA-256: cc45cbc1196abeb3aecf5f766ee38d5fda87908148613fae885348b27ba0dd45 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 SRPM python3.12-3.12.1-4.el9_4.13.src.rpm SHA-256: 4d410ae6f71c6ef16d7b3ed44d43271f7ff52ec6ca8e93865097a7ff8168aefc s390x python3.12-3.12.1-4.el9_4.13.s390x.rpm SHA-256: 17b3fd81fa420f93abd93f33f20c53672711325d0d822aae01fc9623bb8608da python3.12-debuginfo-3.12.1-4.el9_4.13.s390x.rpm SHA-256: 6725eff42b7616a27a09c7e43ffefd8e466ddbfa7df542b0f251237f411fb4a2 python3.12-debugsource-3.12.1-4.el9_4.13.s390x.rpm SHA-256: 89a31cb156bd5078c53449cb3b574a973d66f69fe611c887e2821322be711760 python3.12-devel-3.12.1-4.el9_4.13.s390x.rpm SHA-256: 0c4fa5285338b6cf4870bc8019a96983ab40e329c24042dd550ae9d76bc95210 python3.12-libs-3.12.1-4.el9_4.13.s390x.rpm SHA-256: 5554b2dd8684a69b6fcdd9691197cf2165227e18ee1c0a9f85473f34262db01e python3.12-tkinter-3.12.1-4.el9_4.13.s390x.rpm SHA-256: 12061ec928ed1753d38f13d78651f11f19ea69d1576b104f31715e0cccbb9864 Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 SRPM python3.12-3.12.1-4.el9_4.13.src.rpm SHA-256: 4d410ae6f71c6ef16d7b3ed44d43271f7ff52ec6ca8e93865097a7ff8168aefc ppc64le python3.12-3.12.1-4.el9_4.13.ppc64le.rpm SHA-256: 8cf1cb80a6cb2519d491cc8235e6a7c25da62d1879d56794f7553a520adc7c6c python3.12-debuginfo-3.12.1-4.el9_4.13.ppc64le.rpm SHA-256: 36cc951b0e128388f26ac5c668b72cae982fb307f4a558f897e3e151bfc70f68 python3.12-debugsource-3.12.1-4.el9_4.13.ppc64le.rpm SHA-256: 1cff1ead8eb68b4ff42b4ddedb7ebc228edfcb982df765f4505efd4a21061d35 python3.12-devel-3.12.1-4.el9_4.13.ppc64le.rpm SHA-256: aa626e6f8bd3d147d7f11f19836d7a46ab4bec77827d6aa2b8aef99cd871d4ce python3.12-libs-3.12.1-4.el9_4.13.ppc64le.rpm SHA-256: fa05a2cbe0b81e9845313cedce5d4c1a394044769bb2ec4d74f5fd5548cdf3e4 python3.12-tkinter-3.12.1-4.el9_4.13.ppc64le.rpm SHA-256: 83760189bcbe43d3adc6cbbff36254a0b39bcfaf9b8d06ab535b080f259b8012 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 SRPM python3.12-3.12.1-4.el9_4.13.src.rpm SHA-256: 4d410ae6f71c6ef16d7b3ed44d43271f7ff52ec6ca8e93865097a7ff8168aefc aarch64 python3.12-3.12.1-4.el9_4.13.aarch64.rpm SHA-256: 6cd4444990a324d7a5ef71da569114c3898c003fe2edbf16407d770b89a90e77 python3.12-debuginfo-3.12.1-4.el9_4.13.aarch64.rpm SHA-256: 369138e674de92880b10f2396eef95d9d5836198bc965bde6b4eeb38c6c3d9d0 python3.12-debugsource-3.12.1-4.el9_4.13.aarch64.rpm SHA-256: 741e5e5f3fa62d0b27ba1be946f8b5320f18ff3a46fd6345ee749349ca469216 python3.12-devel-3.12.1-4.el9_4.13.aarch64.rpm SHA-256: 2e92271f12a5ee8ba119ce629095c13f0a03a173f25b2c4e89f6395a2485a8bb python3.12-libs-3.12.1-4.el9_4.13.aarch64.rpm SHA-256: d7f2e0a7ba124d230487ba4839126457ae220a29728d239e7fc9b9b2424194d0 python3.12-tkinter-3.12.1-4.el9_4.13.aarch64.rpm SHA-256: e552e47f4b70c5627c0b7a7338944f55c9a28ee02592bf1d81487a8c2554803b Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 SRPM python3.12-3.12.1-4.el9_4.13.src.rpm SHA-256: 4d410ae6f71c6ef16d7b3ed44d43271f7ff52ec6ca8e93865097a7ff8168aefc ppc64le python3.12-3.12.1-4.el9_4.13.ppc64le.rpm SHA-256: 8cf1cb80a6cb2519d491cc8235e6a7c25da62d1879d56794f7553a520adc7c6c python3.12-debuginfo-3.12.1-4.el9_4.13.ppc64le.rpm SHA-256: 36cc951b0e128388f26ac5c668b72cae982fb307f4a558f897e3e151bfc70f68 python3.12-debugsource-3.12.1-4.el9_4.13.ppc64le.rpm SHA-256: 1cff1ead8eb68b4ff42b4ddedb7ebc228edfcb982df765f4505efd4a21061d35 python3.12-devel-3.12.1-4.el9_4.13.ppc64le.rpm SHA-256: aa626e6f8bd3d147d7f11f19836d7a46ab4bec77827d6aa2b8aef99cd871d4ce python3.12-libs-3.12.1-4.el9_4.13.ppc64le.rpm SHA-256: fa05a2cbe0b81e9845313cedce5d4c1a394044769bb2ec4d74f5fd5548cdf3e4 python3.12-tkinter-3.12.1-4.el9_4.13.ppc64le.rpm SHA-256: 83760189bcbe43d3adc6cbbff36254a0b39bcfaf9b8d06ab535b080f259b8012 Red Hat Enterprise Linux for x86_64 - Update Servic