Alerts This Week
Warning Icon 1 1,213
Alerts This Week
Warning Icon 1 1,213

openSUSE Leap 16.0 Python-WebOb Important Open Redirect CVE-2026-44889

opensuse
Calendar Grey June 30, 2026
Dist Opensuse Esm H88
A critical openSUSE update addressing a security issue in Python packages with vital fixes and improvements.
An update that solves one vulnerability and has 7 bug fixes can now be installed.

Description

This update for python-Markdown, python-joblib, python-handy-archives, python-apache-libcloud, python-WebOb, python-PyGithub, python-soupsieve fixes the following issues:

Changes in python-Markdown:

- Fix tests with latest python version (bsc#1268243)

Changes in python-joblib:

- Update to 1.5.2:

* fixing the resource tracker for python 3.13.7+

* Skip tests failing with Python 3.13.7

Changes in python-handy-archives:

- Skip some zip64 tests that fails with latest python interpreter

because there are more consistency checks in zipfile (bsc#1256310)

Changes in python-apache-libcloud:

- Fix tests compatibility with latest Python 3.13 (bsc#1258223, bsc#1261918)

Changes in python-WebOb:

- Security issues fixed:

* CVE-2026-44889: Fixed: Location header normalization during redirect leads

to open redirect (bsc#1268324)

- Skip boken test with latest cpython interpreters (bsc#1258223)

- Skip test failing on Python 3.14

Changes in python-PyGithub:

- Fix:...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory important python OpenSUSE open redirect python-WebOb

Patch

Package List

- openSUSE Leap 16.0:

python-WebOb-doc-1.8.9-160000.3.1

python313-Markdown-3.8.2-160000.3.1

python313-PyGithub-2.6.1-160000.3.1

python313-WebOb-1.8.9-160000.3.1

python313-apache-libcloud-3.8.0-160000.3.1

python313-handy-archives-0.2.0-160000.3.1

python313-joblib-1.5.2-160000.1.1

python313-soupsieve-2.6-160000.3.1

References

* bsc#1256310

* bsc#1256316

* bsc#1258223

* bsc#1261918

* bsc#1263802

* bsc#1268243

* bsc#1268324

References:

* https://www.suse.com/security/cve/CVE-2026-44889.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2026:21063-1
Rating: important
Affected Products: openSUSE Leap 16.0 -------------------------------------------------------------

Topics%20covered

Topics Covered

security advisory important python OpenSUSE open redirect python-WebOb

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here