Red Hat Product Errata RHSA-2026:2084 - Security Advisory
Issued:
2026-02-05
Updated:
2026-02-05

RHSA-2026:2084 - Security Advisory

Synopsis

Moderate: python3.11 security update

Type/Severity

Security Advisory: Moderate

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for python3.11 is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.

Security Fix(es):

  • cpython: Excessive read buffering DoS in http.client (CVE-2025-13836)
  • cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service (CVE-2025-12084)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8 x86_64
  • Red Hat Enterprise Linux Server - TUS 8.8 x86_64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64

Fixes

  • BZ - 2418078 - CVE-2025-13836 cpython: Excessive read buffering DoS in http.client
  • BZ - 2418655 - CVE-2025-12084 cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8

SRPM
python3.11-3.11.2-2.el8_8.7.src.rpm SHA-256: a5ebb43d4a91e2af9b3abab4dcc47ccb202e6df6d12e6ff545334e58824161cc
x86_64
python3.11-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: c84cbb29783df668c55437d874bea52ba83b9a097738a384f1debaeb4db2293b
python3.11-debuginfo-3.11.2-2.el8_8.7.i686.rpm SHA-256: 3a2f9c3986c73015e774caa2a11abb8a1762c77bb2fd1be4578bcbc54c7aece5
python3.11-debuginfo-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: 195ac8bf79063b47a654ff792f91488a64d742282419118638b9c0268ddfa2fc
python3.11-debugsource-3.11.2-2.el8_8.7.i686.rpm SHA-256: f2e68e6ff2801034a9cc567e3eaa84d0747bdc89d1ab60409b0ffc79d50f6089
python3.11-debugsource-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: 1b726f9f8d25eb029558913848a06dcaf666cb00928830336732ca51bed38dcc
python3.11-devel-3.11.2-2.el8_8.7.i686.rpm SHA-256: 2ff70e5574214c632fad46015fda9fd8deee05ede184c3a2cfc091038d5dd1d4
python3.11-devel-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: 3de433f1753300e6e6ca579e382beeb93070d00f72ead14089036b0327dfe153
python3.11-libs-3.11.2-2.el8_8.7.i686.rpm SHA-256: 7a56f1c479fb77637b1a2c1ac90a2db23e60c9fdfc810b38a8c021368ddeb821
python3.11-libs-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: ea42fd4b93933596eac7c192c6fbe89d491becf9f8fd962c0643bc411659fafe
python3.11-rpm-macros-3.11.2-2.el8_8.7.noarch.rpm SHA-256: 1548b3467f5632f298ba535bd9cea61b16a33b030fa9bf97be03f177146b1f55
python3.11-tkinter-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: cbe807e388775554d07a17a93bb23d72226ee8ed70b4716307cd801ec32403f2

Red Hat Enterprise Linux Server - TUS 8.8

SRPM
python3.11-3.11.2-2.el8_8.7.src.rpm SHA-256: a5ebb43d4a91e2af9b3abab4dcc47ccb202e6df6d12e6ff545334e58824161cc
x86_64
python3.11-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: c84cbb29783df668c55437d874bea52ba83b9a097738a384f1debaeb4db2293b
python3.11-debuginfo-3.11.2-2.el8_8.7.i686.rpm SHA-256: 3a2f9c3986c73015e774caa2a11abb8a1762c77bb2fd1be4578bcbc54c7aece5
python3.11-debuginfo-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: 195ac8bf79063b47a654ff792f91488a64d742282419118638b9c0268ddfa2fc
python3.11-debugsource-3.11.2-2.el8_8.7.i686.rpm SHA-256: f2e68e6ff2801034a9cc567e3eaa84d0747bdc89d1ab60409b0ffc79d50f6089
python3.11-debugsource-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: 1b726f9f8d25eb029558913848a06dcaf666cb00928830336732ca51bed38dcc
python3.11-devel-3.11.2-2.el8_8.7.i686.rpm SHA-256: 2ff70e5574214c632fad46015fda9fd8deee05ede184c3a2cfc091038d5dd1d4
python3.11-devel-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: 3de433f1753300e6e6ca579e382beeb93070d00f72ead14089036b0327dfe153
python3.11-libs-3.11.2-2.el8_8.7.i686.rpm SHA-256: 7a56f1c479fb77637b1a2c1ac90a2db23e60c9fdfc810b38a8c021368ddeb821
python3.11-libs-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: ea42fd4b93933596eac7c192c6fbe89d491becf9f8fd962c0643bc411659fafe
python3.11-rpm-macros-3.11.2-2.el8_8.7.noarch.rpm SHA-256: 1548b3467f5632f298ba535bd9cea61b16a33b030fa9bf97be03f177146b1f55
python3.11-tkinter-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: cbe807e388775554d07a17a93bb23d72226ee8ed70b4716307cd801ec32403f2

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8

SRPM
python3.11-3.11.2-2.el8_8.7.src.rpm SHA-256: a5ebb43d4a91e2af9b3abab4dcc47ccb202e6df6d12e6ff545334e58824161cc
ppc64le
python3.11-3.11.2-2.el8_8.7.ppc64le.rpm SHA-256: 79f0a35ad0183c17925392a91dc4bfe6f4912df2d1316016883884cc553f49ba
python3.11-debuginfo-3.11.2-2.el8_8.7.ppc64le.rpm SHA-256: ffa934943c15c2ca9c53e3dd802cf4a52f4be724bd77d855a76ab177724b90dd
python3.11-debugsource-3.11.2-2.el8_8.7.ppc64le.rpm SHA-256: f7b7b9fd18800863235c1a0cafc9ee8b2cd9e4a01565fb5a516b537450a26ec2
python3.11-devel-3.11.2-2.el8_8.7.ppc64le.rpm SHA-256: d3c4dc39878a0f9b846e2aea4f37c79701baa2c3da77ad5ca75a074a17d6c384
python3.11-libs-3.11.2-2.el8_8.7.ppc64le.rpm SHA-256: c976d92008b644d936fb795455500138addd94536f2e4408e962b88489f9cd40
python3.11-rpm-macros-3.11.2-2.el8_8.7.noarch.rpm SHA-256: 1548b3467f5632f298ba535bd9cea61b16a33b030fa9bf97be03f177146b1f55
python3.11-tkinter-3.11.2-2.el8_8.7.ppc64le.rpm SHA-256: a9958d1efee358fa7fc6676120063395b8af29f5fc74ed493d315a86ea5e24fd

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8

SRPM
python3.11-3.11.2-2.el8_8.7.src.rpm SHA-256: a5ebb43d4a91e2af9b3abab4dcc47ccb202e6df6d12e6ff545334e58824161cc
x86_64
python3.11-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: c84cbb29783df668c55437d874bea52ba83b9a097738a384f1debaeb4db2293b
python3.11-debuginfo-3.11.2-2.el8_8.7.i686.rpm SHA-256: 3a2f9c3986c73015e774caa2a11abb8a1762c77bb2fd1be4578bcbc54c7aece5
python3.11-debuginfo-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: 195ac8bf79063b47a654ff792f91488a64d742282419118638b9c0268ddfa2fc
python3.11-debugsource-3.11.2-2.el8_8.7.i686.rpm SHA-256: f2e68e6ff2801034a9cc567e3eaa84d0747bdc89d1ab60409b0ffc79d50f6089
python3.11-debugsource-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: 1b726f9f8d25eb029558913848a06dcaf666cb00928830336732ca51bed38dcc
python3.11-devel-3.11.2-2.el8_8.7.i686.rpm SHA-256: 2ff70e5574214c632fad46015fda9fd8deee05ede184c3a2cfc091038d5dd1d4
python3.11-devel-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: 3de433f1753300e6e6ca579e382beeb93070d00f72ead14089036b0327dfe153
python3.11-libs-3.11.2-2.el8_8.7.i686.rpm SHA-256: 7a56f1c479fb77637b1a2c1ac90a2db23e60c9fdfc810b38a8c021368ddeb821
python3.11-libs-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: ea42fd4b93933596eac7c192c6fbe89d491becf9f8fd962c0643bc411659fafe
python3.11-rpm-macros-3.11.2-2.el8_8.7.noarch.rpm SHA-256: 1548b3467f5632f298ba535bd9cea61b16a33b030fa9bf97be03f177146b1f55
python3.11-tkinter-3.11.2-2.el8_8.7.x86_64.rpm SHA-256: cbe807e388775554d07a17a93bb23d72226ee8ed70b4716307cd801ec32403f2

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.