Fedora 42 python3.9 Severe Command Injection CVE-2026-4519
fedora
April 4, 2026
Security fix for CVE-2026-4519.
Summary
Python 3.9 package for developers.
This package exists to allow developers to test their code against an older
version of Python. This is not a full Python stack and if you wish to run
your applications with Python 3.9, see other distributions
that support it, such as CentOS or RHEL or older Fedora releases.
Update Information:
Security fix for CVE-2026-4519.
Topics Covered
Change Log
* Thu Mar 26 2026 Lumr Balhar
References
[ 1 ] Bug #2449735 - CVE-2026-4519 python3.9: Python: Command-line option injection in webbrowser.open() via crafted URLs [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2449735
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-0ff49872ae' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: python3.9
Product: Fedora 42
Version: 3.9.25
Release: 7.fc42
Summary: Version 3.9 of the Python interpreter
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!