Important: Red Hat Security Advisory: python3.14-urllib3 security update

An update for python3.14-urllib3 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Medium: python3.14

Issue Overview: The "tarfile" module would still apply normalization of AREGTYPE \x00 blocks to DIRTYPE, even while processing a multi-block member such as GNUTYPELONGNAME or GNUTYPELONGLINK. This could result in a crafted tar archive being misinterpreted by the tarfile module compared to other...

RHEL 9 : python3.14 (RHSA-2026:19176)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:19176 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level...

[SECURITY] Fedora 43 Update: python3.14-3.14.4-2.fc43

Python 3.14 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries...

[SECURITY] Fedora 44 Update: python3.14-3.14.4-2.fc44

Python 3.14 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries...

[SECURITY] Fedora 43 Update: python3.14-3.14.4-1.fc43

Python 3.14 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries...

python314-3.14.4-1.1 on GA media (moderate)

python314-3.14.4-1.1 on GA media Announcement ID: openSUSE-SU-2026:10554-1 Rating: moderate Cross-References: CVE-2026-3479 CVSS scores: CVE-2026-3479 SUSE : 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N CVE-2026-3479 SUSE : 2 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N...

Important: python3.14

Issue Overview: The webbrowser.open API would accept leading dashes in the URL which could be handled as command line options for certain web browsers. New behavior rejects leading dashes. Users are recommended to sanitize URLs prior to passing to webbrowser.open. CVE-2026-4519 Affected Packages:...

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: python3.14: python-unversioned-command-3.14.4-1.hum1 noarch python3-3.14.4-1.hum1 aarch64, x8664 python3-debug-3.14.4-1.hum1 aarch64, x8664 python3-devel-3.14.4-1.hum1 aarch64, x8664...

Fedora 42 : python3.14 (2026-ba6745d242)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-ba6745d242 advisory. Security fix for CVE-2026-4519 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

Fedora 44 : python3.14 (2026-3d7ea476e1)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-3d7ea476e1 advisory. Security fix for CVE-2026-4519 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

Fedora 45 : python3.14 (2026-919a30c67b)

The remote Fedora 45 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-919a30c67b advisory. Automatic update for python3.14-3.14.3-2.fc45. Changelog Thu Mar 26 2026 Lumr Balhar - 3.14.3-2 - Security fix for CVE-2026-4519 rhbz2449730 Tenable has...

PT-2026-23058

Name of the Vulnerable Software and Affected Versions changedetection.io versions prior to 0.54.4 Description The software contains a reflected cross-site scripting XSS issue in the /rss/tag/ endpoint. The tag uuid path parameter is directly included in the HTTP response without proper HTML...

PT-2026-23059

Name of the Vulnerable Software and Affected Versions changedetection.io versions prior to 0.54.4 Description A Zip Slip vulnerability exists in the backup restore functionality, allowing arbitrary file overwrite via path traversal in uploaded ZIP archives. The application uses zipfile.extractall...

[SECURITY] Fedora 42 Update: python3.14-3.14.3-1.fc42

Python 3.14 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.14 package provides the "python3.14" executable:...

Fedora 42 : python3.14 (2026-9ad2d11c1f)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-9ad2d11c1f advisory. New version of the Python interpreter also bringing security fixes. Tenable has extracted the preceding description block directly from the Fedora...

[SECURITY] Fedora 43 Update: python3.14-3.14.2-1.fc43

Python 3.14 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries...

Fedora 43 : freeipa (2025-54a485ee85)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-54a485ee85 advisory. - CVE-2025-7493: host to admin escalation prevention: https://www.freeipa.org/release-notes/4-12-5.html - Rebuild for Python 3.14.0rc3 - Update FreeIPA to...

SUSE CVE-2025-4330

Allows the extraction filter to be ignored, allowing symlink targets to point outside the destination directory, and the modification of some file metadata. You are affected by this vulnerability if using the tarfile module to extract untrusted tar archives using TarFile.extractall or...