Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -2 articles for you...
219
security advisorysecurity fiximportantUbuntu OS 22 Python 3.10 Significant Security Update RLSA-2026-8298
Important: python3.12 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:6285", "synopsis": "Important: python3.12 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for python3.12.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.\n\nSecurity Fix(es):\n\n* python: Python: Command-line option injection in webbrowser.open() via crafted URLs (CVE-2026-4519)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2449649", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2449649", "description": ""}], "cves": [{"name": "CVE-2026-4519", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4519", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L", "cvss3BaseScore": "7.1", "cwe": "CWE-88"}], "references": [], "publishedAt": "2026-04-07T12:03:55.701474Z", "rpms": {"Rocky Linux 9": {"nvras": ["python3.12-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-0:3.12.12-4.el9_7.2.ppc64le.rpm", "python3.12-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-0:3.12.12-4.el9_7.2.src.rpm", "python3.12-0:3.12.12-4.el9_7.2.x86_64.rpm", "python3.12-debug-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-debug-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-debug-0:3.12.12-4.el9_7.2.ppc64le.rpm","python3.12-debug-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-debug-0:3.12.12-4.el9_7.2.x86_64.rpm", "python3.12-debuginfo-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-debuginfo-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-debuginfo-0:3.12.12-4.el9_7.2.ppc64le.rpm", "python3.12-debuginfo-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-debuginfo-0:3.12.12-4.el9_7.2.x86_64.rpm", "python3.12-debugsource-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-debugsource-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-debugsource-0:3.12.12-4.el9_7.2.ppc64le.rpm", "python3.12-debugsource-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-debugsource-0:3.12.12-4.el9_7.2.x86_64.rpm", "python3.12-devel-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-devel-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-devel-0:3.12.12-4.el9_7.2.ppc64le.rpm", "python3.12-devel-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-devel-0:3.12.12-4.el9_7.2.x86_64.rpm", "python3.12-idle-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-idle-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-idle-0:3.12.12-4.el9_7.2.ppc64le.rpm", "python3.12-idle-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-idle-0:3.12.12-4.el9_7.2.x86_64.rpm", "python3.12-libs-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-libs-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-libs-0:3.12.12-4.el9_7.2.ppc64le.rpm", "python3.12-libs-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-libs-0:3.12.12-4.el9_7.2.x86_64.rpm", "python3.12-test-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-test-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-test-0:3.12.12-4.el9_7.2.ppc64le.rpm", "python3.12-test-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-test-0:3.12.12-4.el9_7.2.x86_64.rpm", "python3.12-tkinter-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-tkinter-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-tkinter-0:3.12.12-4.el9_7.2.ppc64le.rpm", "python3.12-tkinter-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-tkinter-0:3.12.12-4.el9_7.2.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Get essential updates on the important python3.12 security fixaffecting Rocky Linux 9 and its potential impact.. Rocky Linux python security update, important python security fix, command-line injection issue, python3.12 security vulnerabilities. . Severity: Important. LinuxSecurity.com Team
Apr 07, 2026
•Important
Rocky Linux
219
security advisorysecurity fiximportantDebian 10 Python3.10 Vulnerability Exploit Risk Notification SRLA-2031-1578
Important: python3.12 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:6285", "synopsis": "Important: python3.12 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for python3.12.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.\n\nSecurity Fix(es):\n\n* python: Python: Command-line option injection in webbrowser.open() via crafted URLs (CVE-2026-4519)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2449649", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2449649", "description": ""}], "cves": [{"name": "CVE-2026-4519", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4519", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L", "cvss3BaseScore": "7.1", "cwe": "CWE-88"}], "references": [], "publishedAt": "2026-04-07T12:03:55.701474Z", "rpms": {"Rocky Linux 9": {"nvras": ["python3.12-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-0:3.12.12-4.el9_7.2.ppc64le.rpm", "python3.12-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-0:3.12.12-4.el9_7.2.src.rpm", "python3.12-0:3.12.12-4.el9_7.2.x86_64.rpm", "python3.12-debug-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-debug-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-debug-0:3.12.12-4.el9_7.2.ppc64le.rpm","python3.12-debug-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-debug-0:3.12.12-4.el9_7.2.x86_64.rpm", "python3.12-debuginfo-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-debuginfo-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-debuginfo-0:3.12.12-4.el9_7.2.ppc64le.rpm", "python3.12-debuginfo-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-debuginfo-0:3.12.12-4.el9_7.2.x86_64.rpm", "python3.12-debugsource-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-debugsource-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-debugsource-0:3.12.12-4.el9_7.2.ppc64le.rpm", "python3.12-debugsource-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-debugsource-0:3.12.12-4.el9_7.2.x86_64.rpm", "python3.12-devel-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-devel-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-devel-0:3.12.12-4.el9_7.2.ppc64le.rpm", "python3.12-devel-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-devel-0:3.12.12-4.el9_7.2.x86_64.rpm", "python3.12-idle-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-idle-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-idle-0:3.12.12-4.el9_7.2.ppc64le.rpm", "python3.12-idle-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-idle-0:3.12.12-4.el9_7.2.x86_64.rpm", "python3.12-libs-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-libs-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-libs-0:3.12.12-4.el9_7.2.ppc64le.rpm", "python3.12-libs-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-libs-0:3.12.12-4.el9_7.2.x86_64.rpm", "python3.12-test-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-test-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-test-0:3.12.12-4.el9_7.2.ppc64le.rpm", "python3.12-test-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-test-0:3.12.12-4.el9_7.2.x86_64.rpm", "python3.12-tkinter-0:3.12.12-4.el9_7.2.aarch64.rpm", "python3.12-tkinter-0:3.12.12-4.el9_7.2.i686.rpm", "python3.12-tkinter-0:3.12.12-4.el9_7.2.ppc64le.rpm", "python3.12-tkinter-0:3.12.12-4.el9_7.2.s390x.rpm", "python3.12-tkinter-0:3.12.12-4.el9_7.2.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Rocky Linux releases a crucial python3.12 update to addresscommand-line option injection vulnerabilities and ensures system safety.. Rocky Linux Security Update, Python Command Injection, Linux Software Security. . Severity: Important. LinuxSecurity.com Team
Apr 07, 2026
•Important
Rocky Linux
219
security advisoryimportantthreat mitigationRocky Linux 9 RLSA-2026-6290 Major Upgrade for Python3.11 Enhances Security
Important: python3.11 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:6286", "synopsis": "Important: python3.11 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for python3.11.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.\n\nSecurity Fix(es):\n\n* python: Python: Command-line option injection in webbrowser.open() via crafted URLs (CVE-2026-4519)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2449649", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2449649", "description": ""}], "cves": [{"name": "CVE-2026-4519", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4519", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L", "cvss3BaseScore": "7.1", "cwe": "CWE-88"}], "references": [], "publishedAt": "2026-04-07T12:03:55.701474Z", "rpms": {"Rocky Linux 9": {"nvras": ["python3.11-0:3.11.13-5.2.el9_7.aarch64.rpm", "python3.11-0:3.11.13-5.2.el9_7.i686.rpm", "python3.11-0:3.11.13-5.2.el9_7.ppc64le.rpm", "python3.11-0:3.11.13-5.2.el9_7.s390x.rpm", "python3.11-0:3.11.13-5.2.el9_7.src.rpm", "python3.11-0:3.11.13-5.2.el9_7.x86_64.rpm", "python3.11-debug-0:3.11.13-5.2.el9_7.aarch64.rpm", "python3.11-debug-0:3.11.13-5.2.el9_7.i686.rpm", "python3.11-debug-0:3.11.13-5.2.el9_7.ppc64le.rpm","python3.11-debug-0:3.11.13-5.2.el9_7.s390x.rpm", "python3.11-debug-0:3.11.13-5.2.el9_7.x86_64.rpm", "python3.11-debuginfo-0:3.11.13-5.2.el9_7.aarch64.rpm", "python3.11-debuginfo-0:3.11.13-5.2.el9_7.i686.rpm", "python3.11-debuginfo-0:3.11.13-5.2.el9_7.ppc64le.rpm", "python3.11-debuginfo-0:3.11.13-5.2.el9_7.s390x.rpm", "python3.11-debuginfo-0:3.11.13-5.2.el9_7.x86_64.rpm", "python3.11-debugsource-0:3.11.13-5.2.el9_7.aarch64.rpm", "python3.11-debugsource-0:3.11.13-5.2.el9_7.i686.rpm", "python3.11-debugsource-0:3.11.13-5.2.el9_7.ppc64le.rpm", "python3.11-debugsource-0:3.11.13-5.2.el9_7.s390x.rpm", "python3.11-debugsource-0:3.11.13-5.2.el9_7.x86_64.rpm", "python3.11-devel-0:3.11.13-5.2.el9_7.aarch64.rpm", "python3.11-devel-0:3.11.13-5.2.el9_7.i686.rpm", "python3.11-devel-0:3.11.13-5.2.el9_7.ppc64le.rpm", "python3.11-devel-0:3.11.13-5.2.el9_7.s390x.rpm", "python3.11-devel-0:3.11.13-5.2.el9_7.x86_64.rpm", "python3.11-idle-0:3.11.13-5.2.el9_7.aarch64.rpm", "python3.11-idle-0:3.11.13-5.2.el9_7.i686.rpm", "python3.11-idle-0:3.11.13-5.2.el9_7.ppc64le.rpm", "python3.11-idle-0:3.11.13-5.2.el9_7.s390x.rpm", "python3.11-idle-0:3.11.13-5.2.el9_7.x86_64.rpm", "python3.11-libs-0:3.11.13-5.2.el9_7.aarch64.rpm", "python3.11-libs-0:3.11.13-5.2.el9_7.i686.rpm", "python3.11-libs-0:3.11.13-5.2.el9_7.ppc64le.rpm", "python3.11-libs-0:3.11.13-5.2.el9_7.s390x.rpm", "python3.11-libs-0:3.11.13-5.2.el9_7.x86_64.rpm", "python3.11-test-0:3.11.13-5.2.el9_7.aarch64.rpm", "python3.11-test-0:3.11.13-5.2.el9_7.i686.rpm", "python3.11-test-0:3.11.13-5.2.el9_7.ppc64le.rpm", "python3.11-test-0:3.11.13-5.2.el9_7.s390x.rpm", "python3.11-test-0:3.11.13-5.2.el9_7.x86_64.rpm", "python3.11-tkinter-0:3.11.13-5.2.el9_7.aarch64.rpm", "python3.11-tkinter-0:3.11.13-5.2.el9_7.i686.rpm", "python3.11-tkinter-0:3.11.13-5.2.el9_7.ppc64le.rpm", "python3.11-tkinter-0:3.11.13-5.2.el9_7.s390x.rpm", "python3.11-tkinter-0:3.11.13-5.2.el9_7.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Stay updated on Rocky Linux 9 python3.11 security fix addressingcommand-line injection flaw and its impact.. Rocky Linux security update, python 3.11 patch, command injection risk. . Severity: Important. LinuxSecurity.com Team
Apr 07, 2026
•Important
Rocky Linux
89
security advisoryfedoraimportantFedora 42 python3.12 Important Command-Line Injection Fix CVE-2026-4519
Security fix for CVE-2026-4519.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-e8c06584a9 2026-04-04 01:02:26.879244+00:00 -------------------------------------------------------------------------------- Name : python3.12 Product : Fedora 42 Version : 3.12.13 Release : 2.fc42 URL : https://www.python.org/ Summary : Version 3.12 of the Python interpreter Description : Python 3.12 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.12 package provides the "python3.12" executable: the reference interpreter for the Python language, version 3. The majority of its standard library is provided in the python3.12-libs package, which should be installed automatically along with python3.12. The remaining parts of the Python standard library are broken out into the python3.12-tkinter and python3.12-test packages, which may need to be installed separately. Documentation for Python is provided in the python3.12-docs package. Packages containing additional libraries for Python are generally named with the "python3.12-" prefix. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2026-4519. -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 26 2026 Lumr Balhar - 3.12.13-2 - Security fix for CVE-2026-4519 (rhbz#2449728) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2449728 - CVE-2026-4519 python3.12: Python: Command-line option injection in webbrowser.open() via crafted URLs [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2449728 -------------------------------------------------------------------------------- This update can be installedwith the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-e8c06584a9' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Python 3.12 in Fedora 42 receives a critical security fix addressing command-line injection vulnerability.. python command-line injection, Fedora 42 security, software update fix. . Severity: Important. LinuxSecurity.com Team
Apr 04, 2026
•Important
Fedora
89
security advisoryfedoracriticalFedora 42 python3.13 Critical Command-Line Injection Fix 2026-49aedae50d
Security fix for CVE-2026-4519.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-49aedae50d 2026-04-03 17:03:00.363053+00:00 -------------------------------------------------------------------------------- Name : python3.13 Product : Fedora 42 Version : 3.13.12 Release : 2.fc42 URL : https://www.python.org/ Summary : Version 3.13 of the Python interpreter Description : Python 3.13 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2026-4519. -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 26 2026 Lumr Balhar - 3.13.12-2 - Security fix for CVE-2026-4519 (rhbz#2449729) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2449729 - CVE-2026-4519 python3.13: Python: Command-line option injection in webbrowser.open() via crafted URLs [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2449729 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-49aedae50d' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Python 3.13 for Fedora 42 receives a critical security fix against command-line option injection.. PythonSecurity Fix, Fedora Python Update, Command-Line Injection, CVE-2026-4519, Fedora 42 Update. . Severity: Critical. LinuxSecurity.com Team
Apr 03, 2026
•Critical
Fedora
89
security advisoryfedoracriticalUbuntu 22.04 python3.11 Major Shell Injection Patch 2025-01c4d2e9ba
Security fix for CVE-2026-4519. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-013fb3d1bc 2026-04-02 01:05:52.796908+00:00 -------------------------------------------------------------------------------- Name : python3.14 Product : Fedora 43 Version : 3.14.3 Release : 2.fc43 URL : https://www.python.org/ Summary : Version 3.14 of the Python interpreter Description : Python 3.14 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2026-4519 -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 26 2026 Lumr Balhar - 3.14.3-2 - Security fix for CVE-2026-4519 (rhbz#2449730) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2449730 - CVE-2026-4519 python3.14: Python: Command-line option injection in webbrowser.open() via crafted URLs [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2449730 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-013fb3d1bc' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Security fix for CVE-2026-4519 in Fedora 43 with python3.14 ensures safer command execution.. Fedora Update, FedoraPython, Command-line Security, Python 3.14, CVE Security Fix. . Severity: Critical. LinuxSecurity.com Team
Apr 02, 2026
•Critical
Fedora
89
security advisoryfedoracriticalFedora 43 python3.11 Critical CVE-2026-4519 Command Line Injection Advisory
Security fix for CVE-2026-4519.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-5dd28d8058 2026-03-29 00:48:39.566780+00:00 -------------------------------------------------------------------------------- Name : python3.11 Product : Fedora 43 Version : 3.11.15 Release : 2.fc43 URL : https://www.python.org/ Summary : Version 3.11 of the Python interpreter Description : Python 3.11 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.11 package provides the "python3.11" executable: the reference interpreter for the Python language, version 3. The majority of its standard library is provided in the python3.11-libs package, which should be installed automatically along with python3.11. The remaining parts of the Python standard library are broken out into the python3.11-tkinter and python3.11-test packages, which may need to be installed separately. Documentation for Python is provided in the python3.11-docs package. Packages containing additional libraries for Python are generally named with the "python3.11-" prefix. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2026-4519. -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 26 2026 Lumr Balhar - 3.11.15-2 - Security fix for CVE-2026-4519 (rhbz#2449727) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2449727 - CVE-2026-4519 python3.11: Python: Command-line option injection in webbrowser.open() via crafted URLs [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2449727 -------------------------------------------------------------------------------- This update can be installedwith the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-5dd28d8058' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Update for Fedora 43 python3.11 addresses critical security issue CVE-2026-4519 related to command-line URL handling.. Python Security Fix, Fedora 43 Advisory, Command Line Injection, CVE-2026-4519. . Severity: Critical. LinuxSecurity.com Team
Mar 29, 2026
•Critical
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!