Alerts This Week
Warning Icon 1 485
Alerts This Week
Warning Icon 1 485

Fedora 43 python3.14 Critical Security Fixes CVE-2026-1502 CVE-2026-4786

fedora
Calendar Grey May 4, 2026
Dist Fedora Esm H88
Critical security fixes for python3.14 on Fedora 43 address multiple CVEs to protect systems from potential exploits and vulnerabilities.
Security fixes for CVE-2026-1502, CVE-2026-4786, CVE-2026-5713, CVE-2026-6100

Summary

Python 3.14 is an accessible, high-level, dynamically typed, interpreted

programming language, designed with an emphasis on code readability.

It includes an extensive standard library, and has a vast ecosystem of

third-party libraries.

Update Information:

Security fixes for CVE-2026-1502, CVE-2026-4786, CVE-2026-5713, CVE-2026-6100

Change Log

* Thu Apr 16 2026 Charalampos Stratakis - 3.14.4-2 - Security fixes for CVE-2026-1502, CVE-2026-4786, CVE-2026-5713, CVE-2026-6100 Resolves: rhbz#2457944, rhbz#2458224, rhbz#2458488, rhbz#2458016

References


[ 1 ] Bug #2457944 - CVE-2026-1502 python3.14: Python: HTTP header injection via CR/LF in proxy tunnel headers [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2457944 [ 2 ] Bug #2458016 - CVE-2026-6100 python3.14: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2458016 [ 3 ] Bug #2458224 - CVE-2026-4786 python3.14: Python: Arbitrary code execution via command injection in webbrowser.open() API [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2458224 [ 4 ] Bug #2458488 - CVE-2026-5713 python3.14: Python: Information disclosure and arbitrary code execution via remote debugging with a malicious process. [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2458488

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-97a8eb204a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: python3.14
Product: Fedora 43
Version: 3.14.4
Release: 2.fc43
Summary: Version 3.14 of the Python interpreter

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here