Security News

Cybersecurity news aggregator

🔄
HIGH Updates Red Hat Errata

RHSA-2026:19175: Important: python3.11 security update

redhatpythoncve-2026-4519cve-2026-6100cve-2026-4786
This security update addresses multiple vulnerabilities in Python 3.11 for Red Hat Enterprise Linux 9, including command injection in the `webbrowser.open()` API and use-after-free issues in decompression modules, which can lead to arbitrary code execution. The advisory rates the overall impact as Important, though one listed CVE (CVE-2026-4519) has a CVSS score of 3.3 (Low). Based on authoritative NVD data, Python versions prior to 3.13.13 and versions 3.14.0 through 3.14.3 are affected, with fixes provided in Python 3.13.13 and 3.14.4.
Read Full Article →

Red Hat Product Errata RHSA-2026:19175 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:19175 - Security Advisory Overview Updated Packages Synopsis Important: python3.11 security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for python3.11 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): python: Python: Command-line option injection in webbrowser.open() via crafted URLs (CVE-2026-4519) python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules (CVE-2026-6100) python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API (CVE-2026-4786) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 9 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8 x86_64 Red Hat Enterprise Linux for IBM z Systems 9 s390x Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.8 s390x Red Hat Enterprise Linux for Power, little endian 9 ppc64le Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.8 ppc64le Red Hat Enterprise Linux for ARM 64 9 aarch64 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.8 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.8 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.8 x86_64 Red Hat CodeReady Linux Builder for x86_64 9 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 9 ppc64le Red Hat CodeReady Linux Builder for ARM 64 9 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 9 s390x Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.8 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.8 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.8 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.8 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.8 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.8 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.8 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.8 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.8 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.8 s390x Fixes BZ - 2449649 - CVE-2026-4519 python: Python: Command-line option injection in webbrowser.open() via crafted URLs BZ - 2457932 - CVE-2026-6100 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules BZ - 2458049 - CVE-2026-4786 python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API CVEs CVE-2026-4519 CVE-2026-4786 CVE-2026-6100 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 9 SRPM python3.11-3.11.13-9.el9_8.src.rpm SHA-256: 8df11cf1ba927305c1d869fb04c00d4582f5277dba6a9dc5306ebc6f45f52041 x86_64 python3.11-3.11.13-9.el9_8.x86_64.rpm SHA-256: 00984da97c2895e344ffa4a51ca7077ee03ae5296f1e9165db95e93ba4ca0c56 python3.11-debuginfo-3.11.13-9.el9_8.i686.rpm SHA-256: 0176c270303e1181531fde9a3e11dbd5e612a3a05151eb660a7bec6f9ee0e5b6 python3.11-debuginfo-3.11.13-9.el9_8.x86_64.rpm SHA-256: 49561937337ad9fb6242d2c2d98d772677bd8486e307a5cd61293a3b51ba66bf python3.11-debugsource-3.11.13-9.el9_8.i686.rpm SHA-256: 168acce10da04fe094d8eca0577b69a592175b1e46fa615ed73d8bc202b87ad4 python3.11-debugsource-3.11.13-9.el9_8.x86_64.rpm SHA-256: 1d155a02e0cedd50e952b5e20cf45d3787e66b9c422051b7f7a22c1a17bd001c python3.11-devel-3.11.13-9.el9_8.i686.rpm SHA-256: 8fbfdd898e521df4f764aea73dfdcf526b36e2802f7f54392d7750f16af2358b python3.11-devel-3.11.13-9.el9_8.x86_64.rpm SHA-256: eacc5a1fe8c0cd1c8366885c3fee5ebf2133714b120b4a0d7cf926d9f47f997a python3.11-libs-3.11.13-9.el9_8.i686.rpm SHA-256: 314a0d13049e92211f0963b69f89538799331fd45a748f57648590ee3962d994 python3.11-libs-3.11.13-9.el9_8.x86_64.rpm SHA-256: 3c044a8f3711acecfa60fd39deb8876660f8bc76e4b40fd5a8d9c60830b23325 python3.11-tkinter-3.11.13-9.el9_8.x86_64.rpm SHA-256: 1ee6f29493dc97f8e12ae1b8cc94a3aa3274bc6172322145d1d79a1a4b24725b Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8 SRPM python3.11-3.11.13-9.el9_8.src.rpm SHA-256: 8df11cf1ba927305c1d869fb04c00d4582f5277dba6a9dc5306ebc6f45f52041 x86_64 python3.11-3.11.13-9.el9_8.x86_64.rpm SHA-256: 00984da97c2895e344ffa4a51ca7077ee03ae5296f1e9165db95e93ba4ca0c56 python3.11-debuginfo-3.11.13-9.el9_8.i686.rpm SHA-256: 0176c270303e1181531fde9a3e11dbd5e612a3a05151eb660a7bec6f9ee0e5b6 python3.11-debuginfo-3.11.13-9.el9_8.x86_64.rpm SHA-256: 49561937337ad9fb6242d2c2d98d772677bd8486e307a5cd61293a3b51ba66bf python3.11-debugsource-3.11.13-9.el9_8.i686.rpm SHA-256: 168acce10da04fe094d8eca0577b69a592175b1e46fa615ed73d8bc202b87ad4 python3.11-debugsource-3.11.13-9.el9_8.x86_64.rpm SHA-256: 1d155a02e0cedd50e952b5e20cf45d3787e66b9c422051b7f7a22c1a17bd001c python3.11-devel-3.11.13-9.el9_8.i686.rpm SHA-256: 8fbfdd898e521df4f764aea73dfdcf526b36e2802f7f54392d7750f16af2358b python3.11-devel-3.11.13-9.el9_8.x86_64.rpm SHA-256: eacc5a1fe8c0cd1c8366885c3fee5ebf2133714b120b4a0d7cf926d9f47f997a python3.11-libs-3.11.13-9.el9_8.i686.rpm SHA-256: 314a0d13049e92211f0963b69f89538799331fd45a748f57648590ee3962d994 python3.11-libs-3.11.13-9.el9_8.x86_64.rpm SHA-256: 3c044a8f3711acecfa60fd39deb8876660f8bc76e4b40fd5a8d9c60830b23325 python3.11-tkinter-3.11.13-9.el9_8.x86_64.rpm SHA-256: 1ee6f29493dc97f8e12ae1b8cc94a3aa3274bc6172322145d1d79a1a4b24725b Red Hat Enterprise Linux for IBM z Systems 9 SRPM python3.11-3.11.13-9.el9_8.src.rpm SHA-256: 8df11cf1ba927305c1d869fb04c00d4582f5277dba6a9dc5306ebc6f45f52041 s390x python3.11-3.11.13-9.el9_8.s390x.rpm SHA-256: 7487c0738d064a0d0ab1b4c287f67f4d16e1e44b7703597fff49c760cc76e98f python3.11-debuginfo-3.11.13-9.el9_8.s390x.rpm SHA-256: b157fd68add7eeb7e30a5f08c579470b5fec65508a7bfbd2a36185f6333de452 python3.11-debugsource-3.11.13-9.el9_8.s390x.rpm SHA-256: d052e0e2703cae20b6857dddfe90a2b16599da9954c82f99a0827abce40e00ae python3.11-devel-3.11.13-9.el9_8.s390x.rpm SHA-256: b332ae107418362e8e8ab72cfa2e8d1c2437895375063e71b06b58d6e9358e2d python3.11-libs-3.11.13-9.el9_8.s390x.rpm SHA-256: b5a5b52a7607367d905758021e9d09cea95bdc0e2a8a07197495fdeacfc30341 python3.11-tkinter-3.11.13-9.el9_8.s390x.rpm SHA-256: 5e5b8e0db78b1b019763a129983d56d59ccad5e5121b76af60257a2f8b81e03e Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.8 SRPM python3.11-3.11.13-9.el9_8.src.rpm SHA-256: 8df11cf1ba927305c1d869fb04c00d4582f5277dba6a9dc5306ebc6f45f52041 s390x python3.11-3.11.13-9.el9_8.s390x.rpm SHA-256: 7487c0738d064a0d0ab1b4c287f67f4d16e1e44b7703597fff49c760cc76e98f python3.11-debuginfo-3.11.13-9.el9_8.s390x.rpm SHA-256: b157fd68add7eeb7e30a5f08c579470b5fec65508a7bfbd2a36185f6333de452 python3.11-debugsource-3.11.13-9.el9_8.s390x.rpm SHA-256: d052e0e2703cae20b6857dddfe90a2b16599da9954c82f99a0827abce40e00ae python3.11-devel-3.11.13-9.el9_8.s390x.rpm SHA-256: b332ae107418362e8e8ab72cfa2e8d1c2437895375063e71b06b58d6e9358e2d python3.11-libs-3.11.13-9.el9_8.s390x.rpm SHA-256: b5a5b52a7607367d905758021e9d09cea95bdc0e2a8a07197495fdeacfc30341 python3.11-tkinter-3.11.13-9.el9_8.s390x.rpm SHA-256: 5e5b8e0db78b1b019763a129983d56d59ccad5e5121b76af60257a2f8b81e03e Red Hat Enterprise Linux for Power, little endian 9 SRPM python3.11-3.11.13-9.el9_8.src.rpm SHA-256: 8df11cf1ba927305c1d869fb04c00d4582f5277dba6a9dc5306ebc6f45f52041 ppc64le python3.11-3.11.13-9.el9_8.ppc64le.rpm SHA-256: 6abd6dfa19bdbb44455b611c7864ad1ceea934816cad3ba33c9ff61b3c7e7612 python3.11-debuginfo-3.11.13-9.el9_8.ppc64le.rpm SHA-256: b14865a3bbaf102ac64c0132ad6857fb04bca870eabd53dbfc7174e3fb9c83e0 python3.11-debugsource-3.11.13-9.el9_8.ppc64le.rpm SHA-256: 6e21f76470dcf3ab5ee930ff1fdc56dd555b4faf5807e671f72396ca253789a9 python3.11-devel-3.11.13-9.el9_8.ppc64le.rpm SHA-256: a50754ed800c92fbadbfa7018d2d36a5e2001d6fadcf656c9a56ab8b8ff8d4e7 python3.11-libs-3.11.13-9.el9_8.ppc64le.rpm SHA-256: 7d173295e7cd1b0f83470f17669c34bc863854e2ae69121c624dff3275244375 python3.11-tkinter-3.11.13-9.el9_8.ppc64le.rpm SHA-256: 9c168a1c1606c0c9b223b471ec1f9b669d9657f01d3cf9ab0b32c911c09c4da0 Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.8 SRPM python3.11-3.11.13-9.el9_8.src.rpm SHA-256: 8df11cf1ba927305c1d869fb04c00d4582f5277dba6a9dc5306ebc6f45f52041 ppc64le python3.11-3.11.13-9.el9_8.ppc64le.rpm SHA-256: 6abd6dfa19bdbb44455b611c7864ad1ceea934816cad3ba33c9ff61b3c7e7612 python3.11-debuginfo-3.11.13-9.el9_8.ppc64le.rpm SHA-256: b14865a3bbaf102ac64c0132ad6857fb04bca870eabd53dbfc7174e3fb9c83e0 python3.11-debugsource-3.11.13-9.el9_8.ppc64le.rpm SHA-256: 6e21f76470dcf3ab5ee930ff1fdc56dd555b4faf5807e671f72396ca253789a9 python3

Related Articles

HIGH RHSA-2026:19177: Important: python3.12 security update Red Hat Errata INFO RHSA-2026:19176: Important: python3.14 security update Red Hat Errata HIGH RHSA-2026:10745: Important: python3.12 security update Red Hat Errata HIGH RHSA-2026:10774: Important: python3.11 security update Red Hat Errata
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn