RHEL 8 : python3 (RHSA-2026:9289)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:9289 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic dat...

arbor-ai (>=0.1.5 <=0.1.14), coreason-runtime (>=0.1.0 <=0.3.0) +11 more potentially affected by CVE-2026-5760 via sglang (>=0.1.26 <=0.5.2)

sglang PYPI version =0.1.26, =0.1.5, =0.1.0, =1.1.0, =2.0.0b40, =0.4.0, =0.0.1, =0.1.0, =0.1.0, =0.0.1.post1, =0.0.0, =0.8.0, =0.10.7 Source cves: CVE-2026-5760 Source advisory: SNYK:PYTHON-SGLANG-16114943...

adclaw (>=1.0.0 <=1.0.4), agentscope-runtime (=1.0.5.post1) +13 more potentially affected by CVE-2026-6603 via agentscope (>=0.1.0 <=1.0.18)

agentscope PYPI version =0.1.0, =1.0.0, =1.0.0.post2, =0.1.0, =0.1.0, =0.1.0.post1, =1.1.0, =1.0.2, =0.1.7, =1.0.1, =1.0.0.4, =0.83.0, =0.83.0, =0.116.1 Source cves: CVE-2026-6603 Source advisory: OSV:GHSA-CR24-FV3H-8CJM...

a-mailx (=0.1.0), a2a-client-handler (=0.1.0) +885 more potentially affected by CVE-2026-41488 via langchain-openai (>=0.0.1 <=1.1.12)

langchain-openai PYPI version =0.0.1, =0.1.0, =0.1.0, =0.1.0b0, =0.0.1, =4.8.2, =0.0.1a1, =0.1.3, =1.0.0rc1, =3.2.0, =0.1.0, =0.1.1, =0.0.1a0, =2.1.7, =2.1.8 and more Source cves: CVE-2026-41488 Source advisory: OSV:GHSA-R7W7-9XR2-QQ2R...

aad-fastapi (>=1.0.0 <=1.1.2), aad-fastapi-dl37 (>=1.0.0 <=1.0.3) +231 more potentially affected by CVE-2026-41425 via authlib (>=0.10.0 <=1.6.10)

authlib PYPI version =0.10.0, =1.0.0, =1.0.0, =0.0.1, =1.0.2, =1.0.2, =1.2.0a20250730, =1.1.0, =1.2.0a20250730, =0.1.0, =0.1.0a1, =1.2.0, =1.2.0a20250730, =1.2.0a20250730, =1.2.0a20250730, =1.2.0, =1.2.1 and more Source cves: CVE-2026-41425 Source advisory: OSV:GHSA-JJ8C-MMJ3-MMGV...

Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: pytest: python3-pytest-9.0.3-1.hum1 noarch pytest-9.0.3-1.hum1.src src...

a-data-processing (=0.0.1), a-mailx (=0.1.0) +1492 more potentially affected by CVE-2026-41182 via langsmith (>=0.0.10 <=0.7.21)

langsmith PYPI version =0.0.10, =0.1.0, =0.1.3, =0.1.0b0, =4.8.2, =0.1.3, =0.1.0, =0.1.0, =0.1.1, =2.1.7, =2.1.8 - agent-builder =0.0.1 and more Source cves: CVE-2026-41182 Source advisory: SNYK:PYTHON-LANGSMITH-16082038...

adversarial-insight-ml (=0.2.1), aiagents4pharma (>=0.0.0 <=1.49.1) +92 more potentially affected by CVE-2026-40491 via gdown (>=5.0.0 <=5.2.1)

gdown PYPI version =5.0.0, =0.0.0, =0.2.3, =0.4.0, =0.0.1, =0.2.2, =1.8.1, =0.2.1, =0.1.1, =0.0.1, =0.2.1 and more Source cves: CVE-2026-40491 Source advisory: SNYK:PYTHON-GDOWN-16540585...

Amazon Linux 2023 : python3, python3-devel, python3-idle (ALAS2023-2026-1583)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1583 advisory. When folding a long comment in an email header containing exclusively unfoldable characters, the parenthesis would not be preserved. This could be used for injecting headers into email message...

GHSA-9QPV-486P-2V4H vulnerabilities

Vulnerabilities for packages: python...

CVE-2026-3479 vulnerabilities

Vulnerabilities for packages: python...

CVE-2025-13462 vulnerabilities

Vulnerabilities for packages: python...

GHSA-43RW-359F-4H89 vulnerabilities

Vulnerabilities for packages: python...

CVE-2026-3479 vulnerabilities

Vulnerabilities for packages: python...

GHSA-43RW-359F-4H89 vulnerabilities

Vulnerabilities for packages: python...

abm-initialization-collection (>=0.6.1 <=0.7.0), allencell-segmenter-ml (>=1.0.0 <=1.0.1rc1) +185 more potentially affected by CVE-2026-34983 via wasmtime (>=40.0.0 <=44.0.0)

wasmtime PYPI version =40.0.0, =0.6.1, =1.0.0, =0.10.0.0.post56, =0.6.0, =0.2.1, =0.1.0, =1.0.3, =2.0.0, =0.1.1, =0.4.1, =0.2.0, =0.2.3 - compare-meshes =0.1.0 - compare-meshes-emscripten =0.1.0 and more Source cves: CVE-2026-34983 Source advisory: OSV:PYSEC-2026-151...

amaranth-yosys (>=0.50.0.0.post107 <=0.50.0.0.post118), astyle-py (>=1.1.0 <=1.1.0rc0) +14 more potentially affected by CVE-2026-34983 via wasmtime (>=30.0.0 <=3.0.0)

wasmtime PYPI version =30.0.0, =0.50.0.0.post107, =1.1.0, =3.11.0, =11.28.0, =1.63.0, =1.63.0, =1.63.0, =1.63.0, =1.63.0, =1.63.0, =0.21.7, =0.26.0, =0.0.16, =0.1.0, =0.0.1, =1.0.0 and more Source cves: CVE-2026-34983 Source advisory: OSV:PYSEC-2026-151...

amaranth-yosys (>=0.9.0.post3746.dev41 <=0.10.0.dev46), astyle-py (>=0.9.0 <=0.9.1) +17 more potentially affected by CVE-2026-34983 via wasmtime (>=0.18.2 <=0.40.0)

wasmtime PYPI version =0.18.2, =0.9.0.post3746.dev41, =0.9.0, =0.9.0.post3527.dev26, =0.0.0.post2625.dev9, =0.0.0.post2625.dev9, =0.0.0.post2625.dev9, =0.0.0.post2625.dev9, =0.0.0.post2625.dev9, =0.0.0.post3694.dev181, =0.0.0.post2616.dev1, =0.0.0.post2616.dev1, =0.0.0.post2616.dev1,...

aas2openapi (>=0.2.0 <=0.2.4), adelecv (>=0.0.1 <=0.0.2) +105 more potentially affected by CVE-2026-35526 via strawberry-graphql (>=0.103.9 <=0.312.0)

strawberry-graphql PYPI version =0.103.9, =0.2.0, =0.0.1, =1.0.0, =0.0.1, =2025.4.0, =2025.4.0, =0.1.1, =0.1.0, =0.1.0, =0.3.0, =0.1.0, =0.1.0, =0.1.0, =0.0.2rc0, =2.11.1 and more Source cves: CVE-2026-35526 Source advisory: OSV:PYSEC-2026-134...

admin-auth0 (>=0.1.1 <=0.1.5), aldryn-django (>=4.2.10.0 <=4.2.18.0) +126 more potentially affected by CVE-2026-3902 via django (>=4.2.0 <=4.2.3)

django PYPI version =4.2.0, =0.1.1, =4.2.10.0, =65.10.0, =7.5.1, =1.0.2, =0.0.1, =0.0.9, =1.3.9, =0.4.0, =0.0.1, =4.16.2, =4.8.0, =4.17.1 and more Source cves: CVE-2026-3902 Source advisory: SNYK:PYTHON-DJANGO-15923569...