[CLSA-2026:1774261018] python3.9: Fix of 3 CVEs
Type:
security
Severity:
Important
Release date:
2026-03-23 10:17:05 UTC
Description:
- CVE-2026-0865: Prevent HTTP header injection: validate and reject user- controlled header names and values containing newlines. - CVE-2025-15367: Reject control characters in POP3 commands - CVE-2026-1299: Reject incorrectly folded LiteralHeader values and quote newlines during BytesGenerator serialization; prevent header injection
Updated packages:
  • python-unversioned-command-3.9.16-1.el9_2.2.tuxcare.els19.noarch.rpm
    sha:1a8e921257d02b9a6facf86c500bff150872218a28394c8fa9ab18be49081814
  • python3-3.9.16-1.el9_2.2.tuxcare.els19.i686.rpm
    sha:d710ca9b406a368fb58e20b672e7465e0352aefaf90ee9f2fd8c2626ece61eca
  • python3-3.9.16-1.el9_2.2.tuxcare.els19.x86_64.rpm
    sha:c88892f73c00d991b5f7210de5a030c4159b31f125c7c76977f19d5f4ce41f0e
  • python3-debug-3.9.16-1.el9_2.2.tuxcare.els19.i686.rpm
    sha:7acdb9e9fb0cf8e4aa9d2c1b194afe4bd55218edd30c53452b574d88529779d4
  • python3-debug-3.9.16-1.el9_2.2.tuxcare.els19.x86_64.rpm
    sha:6c5e3e106078578d2c986c6b403acd6d41db8ec6f4f86823e5638d8fc30ce7b3
  • python3-devel-3.9.16-1.el9_2.2.tuxcare.els19.i686.rpm
    sha:0970f24c4766d1ecac1d11c3843b21e12395db0ae7148fcc05e65d08e3b41b5c
  • python3-devel-3.9.16-1.el9_2.2.tuxcare.els19.x86_64.rpm
    sha:d73a71e7715d18c281ea81e850b8ab3ece22bfae8c8039ecfb5a5ff84decfae9
  • python3-idle-3.9.16-1.el9_2.2.tuxcare.els19.i686.rpm
    sha:ab7afa5fb2df91fe49de9f0c93232785955f2e160ccb0ca12fb15425d3c344d3
  • python3-idle-3.9.16-1.el9_2.2.tuxcare.els19.x86_64.rpm
    sha:49b83cf0171cbbb44a3925abc8a67b52644477262f1866264f3784c3d0229e78
  • python3-libs-3.9.16-1.el9_2.2.tuxcare.els19.i686.rpm
    sha:294d83a9d3db904adb5ae950579fe514e3bbc21d38c56780037579d923ea888c
  • python3-libs-3.9.16-1.el9_2.2.tuxcare.els19.x86_64.rpm
    sha:c2ae8ae76833b9eabbb6c8789d8e2226608c37ec3056a660a96394bf7e0f7997
  • python3-test-3.9.16-1.el9_2.2.tuxcare.els19.i686.rpm
    sha:3dafe357e307b86df796e6d3028b910414a7c136fa6a38912a2a23683983202f
  • python3-test-3.9.16-1.el9_2.2.tuxcare.els19.x86_64.rpm
    sha:9793b0ce12c8e6c38c11bb012ea5298f0b3423d1f8b377adb33c45f72c53abea
  • python3-tkinter-3.9.16-1.el9_2.2.tuxcare.els19.i686.rpm
    sha:1572e386573b517278b498eb62c9e72d41c093e2033c2c28d34ffb1ba8f405ac
  • python3-tkinter-3.9.16-1.el9_2.2.tuxcare.els19.x86_64.rpm
    sha:b7aca0010892421d8633fff37b5391f59854f000364e351765c46d713bb3c36b
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.