Red Hat Product Errata RHSA-2026:6286 - Security Advisory
Issued:
2026-03-31
Updated:
2026-03-31

RHSA-2026:6286 - Security Advisory

Synopsis

Important: python3.11 security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for python3.11 is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.

Security Fix(es):

  • python: Python: Command-line option injection in webbrowser.open() via crafted URLs (CVE-2026-4519)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 9 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 9 s390x
  • Red Hat Enterprise Linux for Power, little endian 9 ppc64le
  • Red Hat Enterprise Linux for ARM 64 9 aarch64
  • Red Hat CodeReady Linux Builder for x86_64 9 x86_64
  • Red Hat CodeReady Linux Builder for Power, little endian 9 ppc64le
  • Red Hat CodeReady Linux Builder for ARM 64 9 aarch64
  • Red Hat CodeReady Linux Builder for IBM z Systems 9 s390x

Fixes

  • BZ - 2449649 - CVE-2026-4519 python: Python: Command-line option injection in webbrowser.open() via crafted URLs

Red Hat Enterprise Linux for x86_64 9

SRPM
python3.11-3.11.13-5.2.el9_7.src.rpm SHA-256: f9ebe26b8082463b56a7f92b1dabafda876311a633d325e8398d2965ff3cd171
x86_64
python3.11-3.11.13-5.2.el9_7.x86_64.rpm SHA-256: 24a5d9e0f61ab54e986982251c06a8d354cfa90b8e4894738db3122bfb6d8c9d
python3.11-debuginfo-3.11.13-5.2.el9_7.i686.rpm SHA-256: 435b12404488a086865b2a343c532eca72ac1e823adc45e0814970e1bd4a667a
python3.11-debuginfo-3.11.13-5.2.el9_7.x86_64.rpm SHA-256: b5622b213b3d89579576e60c51e3ac6260a5019f466bf16fb71f010738600ae6
python3.11-debugsource-3.11.13-5.2.el9_7.i686.rpm SHA-256: 0ece821c6c9781b3ce0676d72cfd6fa91b626c406c5f7d49d5c38c750c3249af
python3.11-debugsource-3.11.13-5.2.el9_7.x86_64.rpm SHA-256: 00ea5f31f33af9bad98de95f48314849a56ef031e8689bb11e9d40425139d913
python3.11-devel-3.11.13-5.2.el9_7.i686.rpm SHA-256: 69c3031e89b4fd86acf7ffd68ff13658fe2e1eca708d67862aa12bc6a8f62507
python3.11-devel-3.11.13-5.2.el9_7.x86_64.rpm SHA-256: 96dd0741b0dc8945199907a9a7a5c9ea4644cf52a436d2496893875049fc81bc
python3.11-libs-3.11.13-5.2.el9_7.i686.rpm SHA-256: 156335d8e512fa87823180f90b8a49be3544a80e08685b775e8880b64c2390fa
python3.11-libs-3.11.13-5.2.el9_7.x86_64.rpm SHA-256: 12d33828e1df45e669284bb3d67f32632185b5b4ee8a012994e0ee4c8cac3736
python3.11-tkinter-3.11.13-5.2.el9_7.x86_64.rpm SHA-256: 29dc5d9a188b61771bc077052389030525d5f926eb474dff8c2b79429b342230

Red Hat Enterprise Linux for IBM z Systems 9

SRPM
python3.11-3.11.13-5.2.el9_7.src.rpm SHA-256: f9ebe26b8082463b56a7f92b1dabafda876311a633d325e8398d2965ff3cd171
s390x
python3.11-3.11.13-5.2.el9_7.s390x.rpm SHA-256: a2595e970e51f720c7312524f1874bb49e60c057bb9372ddaaa1e2e53b5353ab
python3.11-debuginfo-3.11.13-5.2.el9_7.s390x.rpm SHA-256: 59abb98658083f30769e9ab09f043bd7e9e7a119ba657d479cc362c1a5303220
python3.11-debugsource-3.11.13-5.2.el9_7.s390x.rpm SHA-256: d7f7633a4de99386a033bcf7953e793fad9cb35a55e874a345be9d22a6fcf607
python3.11-devel-3.11.13-5.2.el9_7.s390x.rpm SHA-256: 148a66412993563de27dc814d02dac633672a56ce0da15bed681dee79fb06d68
python3.11-libs-3.11.13-5.2.el9_7.s390x.rpm SHA-256: db804a67839fc95a007b7b0031d803017d14daee66f6677a7b49ea82d5f54d08
python3.11-tkinter-3.11.13-5.2.el9_7.s390x.rpm SHA-256: 2c7ea1a204f6e77f502007aec266884361aeed2c3d8c6f7c00eca7b8819fec36

Red Hat Enterprise Linux for Power, little endian 9

SRPM
python3.11-3.11.13-5.2.el9_7.src.rpm SHA-256: f9ebe26b8082463b56a7f92b1dabafda876311a633d325e8398d2965ff3cd171
ppc64le
python3.11-3.11.13-5.2.el9_7.ppc64le.rpm SHA-256: 8cbdcf7a97477e8c9c4bc7a9a69cc9560b92ebcebac00ed621a1dee3673ad690
python3.11-debuginfo-3.11.13-5.2.el9_7.ppc64le.rpm SHA-256: d46676820939df7ae9f21d5bcf8280ada5fdd217cfaedbae2e13bedb5ea8ee47
python3.11-debugsource-3.11.13-5.2.el9_7.ppc64le.rpm SHA-256: bd0ff11dddb1eef18d5b3f4671a4edb774a1102b398dccc40704f159c63a14bd
python3.11-devel-3.11.13-5.2.el9_7.ppc64le.rpm SHA-256: 1572b0a48a75da0f11c095ac2ebf197f49c3874544adceefbb677316dff49d62
python3.11-libs-3.11.13-5.2.el9_7.ppc64le.rpm SHA-256: 51a34a1485c16f2ade94590352ffffd645c53aedc94a0fb960e6e0d6df2d7b14
python3.11-tkinter-3.11.13-5.2.el9_7.ppc64le.rpm SHA-256: 78943b3232302b4361c14911b99c23965b43f3a7c5dd4093a6d98408f5cf1817

Red Hat Enterprise Linux for ARM 64 9

SRPM
python3.11-3.11.13-5.2.el9_7.src.rpm SHA-256: f9ebe26b8082463b56a7f92b1dabafda876311a633d325e8398d2965ff3cd171
aarch64
python3.11-3.11.13-5.2.el9_7.aarch64.rpm SHA-256: 12cee7949252c030d7b5f5becc1a57b8acadad113e7d2da1461d51ef0dc56950
python3.11-debuginfo-3.11.13-5.2.el9_7.aarch64.rpm SHA-256: 8eda82b8fef62b84d9def2d6dd9d30e001906099d44858ab5cf44a6fcf5a1bc1
python3.11-debugsource-3.11.13-5.2.el9_7.aarch64.rpm SHA-256: ae30cbb7124a0f8b6ac1cb20c6bc4e1e66911db2f3191d966a8d0cc96ed86d3d
python3.11-devel-3.11.13-5.2.el9_7.aarch64.rpm SHA-256: 325bc6876fe8f78e568a2533a7acfade357431a09d79e392865394392ea86e08
python3.11-libs-3.11.13-5.2.el9_7.aarch64.rpm SHA-256: 81c2b6691e8f5433555c7af773337405c08956629ce957ae8a34c508245d7218
python3.11-tkinter-3.11.13-5.2.el9_7.aarch64.rpm SHA-256: 8d90e8cfb534bdeb04908781a72b27a63ff1af05f445488c1b6c30051086abe8

Red Hat CodeReady Linux Builder for x86_64 9

SRPM
x86_64
python3.11-3.11.13-5.2.el9_7.i686.rpm SHA-256: 4d8dd7405b76175ce962d1d74ca3c7be67bd517d2dba2e95a0402943d671e163
python3.11-debug-3.11.13-5.2.el9_7.i686.rpm SHA-256: 37af7344c34a0dfe4a678567c7cd05cc1054ab598febb0873a6d1b70ba908eaa
python3.11-debug-3.11.13-5.2.el9_7.x86_64.rpm SHA-256: 7b3ad3e4aeab253add212c286ac9d738f569484adb2a834a569272b79e613c1d
python3.11-debuginfo-3.11.13-5.2.el9_7.i686.rpm SHA-256: 435b12404488a086865b2a343c532eca72ac1e823adc45e0814970e1bd4a667a
python3.11-debuginfo-3.11.13-5.2.el9_7.x86_64.rpm SHA-256: b5622b213b3d89579576e60c51e3ac6260a5019f466bf16fb71f010738600ae6
python3.11-debugsource-3.11.13-5.2.el9_7.i686.rpm SHA-256: 0ece821c6c9781b3ce0676d72cfd6fa91b626c406c5f7d49d5c38c750c3249af
python3.11-debugsource-3.11.13-5.2.el9_7.x86_64.rpm SHA-256: 00ea5f31f33af9bad98de95f48314849a56ef031e8689bb11e9d40425139d913
python3.11-idle-3.11.13-5.2.el9_7.i686.rpm SHA-256: 715aea1e133da2020b1d41590c509681c3327f392a0436302b0c470e3ab152cf
python3.11-idle-3.11.13-5.2.el9_7.x86_64.rpm SHA-256: 3965f4994085891bb8e776b5084df19c4692155b483bea12329abc8d93f79ff4
python3.11-test-3.11.13-5.2.el9_7.i686.rpm SHA-256: 94f71893c1ad41be0a5b09b526aaf982a3738f0e90a0577cda671e0b115b19fd
python3.11-test-3.11.13-5.2.el9_7.x86_64.rpm SHA-256: 7ebf5531e74e48615014f78e047d83bf3fd193a065fc44118e48a3c6916f665e
python3.11-tkinter-3.11.13-5.2.el9_7.i686.rpm SHA-256: 7f0a4d4de959413f5d8c253fad09b02e82ef7098639db18bec54f4c9b0dd499b

Red Hat CodeReady Linux Builder for Power, little endian 9

SRPM
ppc64le
python3.11-debug-3.11.13-5.2.el9_7.ppc64le.rpm SHA-256: e58e41c354a2f779b5430b74a4e0116f6d382491a43408b31335817bf40f4032
python3.11-debuginfo-3.11.13-5.2.el9_7.ppc64le.rpm SHA-256: d46676820939df7ae9f21d5bcf8280ada5fdd217cfaedbae2e13bedb5ea8ee47
python3.11-debugsource-3.11.13-5.2.el9_7.ppc64le.rpm SHA-256: bd0ff11dddb1eef18d5b3f4671a4edb774a1102b398dccc40704f159c63a14bd
python3.11-idle-3.11.13-5.2.el9_7.ppc64le.rpm SHA-256: e68f3d4954c4efe55c044d0a48f47fb00c5f14b4c15ff17208017998d833a59a
python3.11-test-3.11.13-5.2.el9_7.ppc64le.rpm SHA-256: e907c6151741c600c4855cbff6bd392cd46d208647c525b8af5192ab897c5be4

Red Hat CodeReady Linux Builder for ARM 64 9

SRPM
aarch64
python3.11-debug-3.11.13-5.2.el9_7.aarch64.rpm SHA-256: 14094e61891d4cd1f1baee080c53298ef5fd358df78c618ee26c4f780456ecaf
python3.11-debuginfo-3.11.13-5.2.el9_7.aarch64.rpm SHA-256: 8eda82b8fef62b84d9def2d6dd9d30e001906099d44858ab5cf44a6fcf5a1bc1
python3.11-debugsource-3.11.13-5.2.el9_7.aarch64.rpm SHA-256: ae30cbb7124a0f8b6ac1cb20c6bc4e1e66911db2f3191d966a8d0cc96ed86d3d
python3.11-idle-3.11.13-5.2.el9_7.aarch64.rpm SHA-256: e6011070d3f86ae80cdce52b16ae37cc1c795108632b2b367f40d43eec551a8e
python3.11-test-3.11.13-5.2.el9_7.aarch64.rpm SHA-256: d24516f8b9eb42f73fb4d7ff75c97e1c03c4710b022825a7221b5efb3ed5d740

Red Hat CodeReady Linux Builder for IBM z Systems 9

SRPM
s390x
python3.11-debug-3.11.13-5.2.el9_7.s390x.rpm SHA-256: 903cd01ff1bb35ce641b2302eef0d7d111cef177c04bde193ff2da1f93a642a3
python3.11-debuginfo-3.11.13-5.2.el9_7.s390x.rpm SHA-256: 59abb98658083f30769e9ab09f043bd7e9e7a119ba657d479cc362c1a5303220
python3.11-debugsource-3.11.13-5.2.el9_7.s390x.rpm SHA-256: d7f7633a4de99386a033bcf7953e793fad9cb35a55e874a345be9d22a6fcf607
python3.11-idle-3.11.13-5.2.el9_7.s390x.rpm SHA-256: 82e57350c14610b46e2e17481966ce7b94276fbdf49bf79e50a1400dad92f7b3
python3.11-test-3.11.13-5.2.el9_7.s390x.rpm SHA-256: be3847bbd73d266835d90b4ffa446607b9569b7e5c188a72941272190453a220

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.