{"id":"RHSA-2026:19019","summary":"Red Hat Security Advisory: python3.14 security update","modified":"2026-05-21T10:07:06Z","published":"2026-05-20T10:09:36Z","upstream":["CVE-2026-0865","CVE-2026-1502","CVE-2026-2297","CVE-2026-3644","CVE-2026-4224","CVE-2026-4519","CVE-2026-4786","CVE-2026-5713","CVE-2026-6100"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2026:19019"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2431367"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2444691"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2448168"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2448181"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2449649"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2457409"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2457932"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2458049"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2458239"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_19019.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-0865"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-0865"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-0865"},{"type":"ARTICLE","url":"https://github.com/python/cpython/issues/143916"},{"type":"ARTICLE","url":"https://github.com/python/cpython/pull/143917"},{"type":"ARTICLE","url":"https://mail.python.org/archives/list/security-announce@python.org/thread/BJ6QPHNSHJTS3A7CFV6IBMCAP2DWRVNT/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-1502"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-1502"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-1502"},{"type":"ARTICLE","url":"https://github.com/python/cpython/commit/05ed7ce7ae9e17c23a04085b2539fe6d6d3cef69"},{"type":"ARTICLE","url":"https://github.com/python/cpython/issues/146211"},{"type":"ARTICLE","url":"https://github.com/python/cpython/pull/146212"},{"type":"ARTICLE","url":"https://mail.python.org/archives/list/security-announce@python.org/thread/2IVPAEQWUJBCTQZEJEVTYCIKSMQPGRZ3/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-2297"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-2297"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-2297"},{"type":"ARTICLE","url":"https://github.com/python/cpython/commit/482d6f8bdba9da3725d272e8bb4a2d25fb6a603e"},{"type":"ARTICLE","url":"https://github.com/python/cpython/commit/a51b1b512de1d56b3714b65628a2eae2b07e535e"},{"type":"ARTICLE","url":"https://github.com/python/cpython/commit/e58e9802b9bec5cdbf48fc9bf1da5f4fda482e86"},{"type":"ARTICLE","url":"https://github.com/python/cpython/issues/145506"},{"type":"ARTICLE","url":"https://github.com/python/cpython/pull/145507"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-3644"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-3644"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-3644"},{"type":"ARTICLE","url":"https://github.com/python/cpython/commit/57e88c1cf95e1481b94ae57abe1010469d47a6b4"},{"type":"ARTICLE","url":"https://github.com/python/cpython/issues/145599"},{"type":"ARTICLE","url":"https://github.com/python/cpython/pull/145600"},{"type":"ARTICLE","url":"https://mail.python.org/archives/list/security-announce@python.org/thread/H6CADMBCDRFGWCMOXWUIHFJNV43GABJ7/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4224"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4224"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4224"},{"type":"ARTICLE","url":"https://github.com/python/cpython/commit/196edfb06a7458377d4d0f4b3cd41724c1f3bd4a"},{"type":"ARTICLE","url":"https://github.com/python/cpython/commit/e0a8a6da90597a924b300debe045cdb4628ee1f3"},{"type":"ARTICLE","url":"https://github.com/python/cpython/commit/eb0e8be3a7e11b87d198a2c3af1ed0eccf532768"},{"type":"ARTICLE","url":"https://github.com/python/cpython/issues/145986"},{"type":"ARTICLE","url":"https://github.com/python/cpython/pull/145987"},{"type":"ARTICLE","url":"https://mail.python.org/archives/list/security-announce@python.org/thread/5M7CGUW3XBRY7II4DK43KF7NQQ3TPZ6R/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4519"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4519"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4519"},{"type":"ARTICLE","url":"https://github.com/python/cpython/issues/143930"},{"type":"ARTICLE","url":"https://github.com/python/cpython/pull/143931"},{"type":"ARTICLE","url":"https://mail.python.org/archives/list/security-announce@python.org/thread/AY5NDSS433JK56Q7Q5IS7B37QFZVVOUS/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4786"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4786"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4786"},{"type":"ARTICLE","url":"https://github.com/python/cpython/issues/148169"},{"type":"ARTICLE","url":"https://github.com/python/cpython/pull/148170"},{"type":"ARTICLE","url":"https://mail.python.org/archives/list/security-announce@python.org/thread/JQDUNJVB4AQNTJECSUKOBDU3XCJIPSE5/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-5713"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-5713"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-5713"},{"type":"ARTICLE","url":"https://github.com/python/cpython/issues/148178"},{"type":"ARTICLE","url":"https://github.com/python/cpython/pull/148187"},{"type":"ARTICLE","url":"https://mail.python.org/archives/list/security-announce@python.org/thread/OG4RHARYSNIE22GGOMVMCRH76L5HKPLM/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-6100"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-6100"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-6100"},{"type":"ARTICLE","url":"https://github.com/python/cpython/commit/6a5f79c8d7bbf22b083b240910c7a8781a59437d"},{"type":"ARTICLE","url":"https://github.com/python/cpython/commit/8fc66aef6d7b3ae58f43f5c66f9366cc8cbbfcd2"},{"type":"ARTICLE","url":"https://github.com/python/cpython/commit/c3cf71c3366fe49acb776a639405c0eea6169c20"},{"type":"ARTICLE","url":"https://github.com/python/cpython/issues/148395"},{"type":"ARTICLE","url":"https://github.com/python/cpython/pull/148396"},{"type":"ARTICLE","url":"https://mail.python.org/archives/list/security-announce@python.org/thread/HTWB2Z6KT5QQX4RYEZAFININDHNOSIF3/"}],"affected":[{"package":{"name":"python3.14","ecosystem":"Red Hat:enterprise_linux:10.2","purl":"pkg:rpm/redhat/python3.14"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.14.4-2.el10_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:19019.json"}},{"package":{"name":"python3.14-debug","ecosystem":"Red Hat:enterprise_linux:10.2","purl":"pkg:rpm/redhat/python3.14-debug"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.14.4-2.el10_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:19019.json"}},{"package":{"name":"python3.14-debuginfo","ecosystem":"Red Hat:enterprise_linux:10.2","purl":"pkg:rpm/redhat/python3.14-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.14.4-2.el10_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:19019.json"}},{"package":{"name":"python3.14-debugsource","ecosystem":"Red Hat:enterprise_linux:10.2","purl":"pkg:rpm/redhat/python3.14-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.14.4-2.el10_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:19019.json"}},{"package":{"name":"python3.14-devel","ecosystem":"Red Hat:enterprise_linux:10.2","purl":"pkg:rpm/redhat/python3.14-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.14.4-2.el10_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:19019.json"}},{"package":{"name":"python3.14-freethreading","ecosystem":"Red Hat:enterprise_linux:10.2","purl":"pkg:rpm/redhat/python3.14-freethreading"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.14.4-2.el10_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:19019.json"}},{"package":{"name":"python3.14-freethreading-debug","ecosystem":"Red Hat:enterprise_linux:10.2","purl":"pkg:rpm/redhat/python3.14-freethreading-debug"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.14.4-2.el10_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:19019.json"}},{"package":{"name":"python3.14-freethreading-devel","ecosystem":"Red Hat:enterprise_linux:10.2","purl":"pkg:rpm/redhat/python3.14-freethreading-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.14.4-2.el10_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:19019.json"}},{"package":{"name":"python3.14-freethreading-idle","ecosystem":"Red Hat:enterprise_linux:10.2","purl":"pkg:rpm/redhat/python3.14-freethreading-idle"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.14.4-2.el10_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:19019.json"}},{"package":{"name":"python3.14-freethreading-libs","ecosystem":"Red Hat:enterprise_linux:10.2","purl":"pkg:rpm/redhat/python3.14-freethreading-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.14.4-2.el10_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:19019.json"}},{"package":{"name":"python3.14-freethreading-test","ecosystem":"Red Hat:enterprise_linux:10.2","purl":"pkg:rpm/redhat/python3.14-freethreading-test"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.14.4-2.el10_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:19019.json"}},{"package":{"name":"python3.14-freethreading-tkinter","ecosystem":"Red Hat:enterprise_linux:10.2","purl":"pkg:rpm/redhat/python3.14-freethreading-tkinter"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.14.4-2.el10_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:19019.json"}},{"package":{"name":"python3.14-idle","ecosystem":"Red Hat:enterprise_linux:10.2","purl":"pkg:rpm/redhat/python3.14-idle"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.14.4-2.el10_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:19019.json"}},{"package":{"name":"python3.14-libs","ecosystem":"Red Hat:enterprise_linux:10.2","purl":"pkg:rpm/redhat/python3.14-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.14.4-2.el10_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:19019.json"}},{"package":{"name":"python3.14-test","ecosystem":"Red Hat:enterprise_linux:10.2","purl":"pkg:rpm/redhat/python3.14-test"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.14.4-2.el10_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:19019.json"}},{"package":{"name":"python3.14-tkinter","ecosystem":"Red Hat:enterprise_linux:10.2","purl":"pkg:rpm/redhat/python3.14-tkinter"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.14.4-2.el10_2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:19019.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}