Fedora 43 Python 3.6 Vulnerability CVE-2026-4786 Critical Code Exec
fedora
May 1, 2026
Security fixes for CVE-2026-4786, CVE-2026-6100
Summary
Python 3.6 package for developers.
This package exists to allow developers to test their code against an older
version of Python. This is not a full Python stack and if you wish to run
your applications with Python 3.6, see other distributions
that support it, such as CentOS or RHEL with Software Collections
or older Fedora releases.
Update Information:
Security fixes for CVE-2026-4786, CVE-2026-6100
Change Log
* Fri Apr 17 2026 Charalampos Stratakis
References
[ 1 ] Bug #2458018 - CVE-2026-6100 python3.6: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2458018
[ 2 ] Bug #2458226 - CVE-2026-4786 python3.6: Python: Arbitrary code execution via command injection in webbrowser.open() API [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2458226
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-f08d5a8191' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: python3.6
Product: Fedora 43
Version: 3.6.15
Release: 57.fc43
Summary: Version 3.6 of the Python interpreter
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!