[CLSA-2026:1777891107] python3.11: Fix of CVE-2026-4786
Type:
security
Severity:
Important
Release date:
2026-05-04 10:38:32 UTC
Description:
- CVE-2026-4786: fix webbrowser %action substitution bypass of the dash-prefix safety check by validating the post-substitution URL and expanding %action before %s in UnixBrowser argument assembly
Updated packages:
  • python3.11-3.11.11-2.el9_6.2.tuxcare.els6.i686.rpm
    sha:fd462bae5cf122ad68129d0ff0b985ebe0a0839e78f26e1e011e16b92d9ad373
  • python3.11-3.11.11-2.el9_6.2.tuxcare.els6.x86_64.rpm
    sha:1149398b9606a0f618a667a88745e25b7380d74b5a4c00f1ccc912bedbfb2e1d
  • python3.11-debug-3.11.11-2.el9_6.2.tuxcare.els6.i686.rpm
    sha:5a29b96593f35b11006c8be77a95f85d7ec0747ec2a6dc17237240509629bc3b
  • python3.11-debug-3.11.11-2.el9_6.2.tuxcare.els6.x86_64.rpm
    sha:ccbbe97e964b08d1488053e352d28f0efaefbaeeb2d1bc220c60dde1fc9eb60f
  • python3.11-devel-3.11.11-2.el9_6.2.tuxcare.els6.i686.rpm
    sha:f776d5833c2c29ab946ae636fc355ada5c8ee47dea9c62c83c4679d79c18ce33
  • python3.11-devel-3.11.11-2.el9_6.2.tuxcare.els6.x86_64.rpm
    sha:efeb7360dc53e1c41fe2ecae770637796a089240ae3a0062f65b7dd108808481
  • python3.11-idle-3.11.11-2.el9_6.2.tuxcare.els6.i686.rpm
    sha:ad7b747d050f7d4bd5e92485f00e045fa750d9682b40985664aae9388afe0b63
  • python3.11-idle-3.11.11-2.el9_6.2.tuxcare.els6.x86_64.rpm
    sha:c338aba3deed4a9ad3bb0389e54e2b7bd5af8d2ceecbbe7ca1abb14baf30117d
  • python3.11-libs-3.11.11-2.el9_6.2.tuxcare.els6.i686.rpm
    sha:0632268ade80b8b09af36e7425a71932a723e55525e9491036bb0aeabe5c9d3d
  • python3.11-libs-3.11.11-2.el9_6.2.tuxcare.els6.x86_64.rpm
    sha:be3e63e6e39a75e7490ddbccb230561573965eb9d4529a636f06e131d43003cd
  • python3.11-test-3.11.11-2.el9_6.2.tuxcare.els6.i686.rpm
    sha:7db2e4568972f73d37896ab79e6485288e043abe8cb1dacfac8607fb8043c9e4
  • python3.11-test-3.11.11-2.el9_6.2.tuxcare.els6.x86_64.rpm
    sha:4fd36fa4e292afdbe60217f592b866d9c51d622ef1de9b664d7862ceca2412a6
  • python3.11-tkinter-3.11.11-2.el9_6.2.tuxcare.els6.i686.rpm
    sha:a280b8ff041906959a65192040907f8c783eef683b103c2a19c8bd9f0aaaacf7
  • python3.11-tkinter-3.11.11-2.el9_6.2.tuxcare.els6.x86_64.rpm
    sha:3f6b5de7074049e39306a4c5c9e2426ea1582d18636d457927156b5551ffb2c5
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.