Release date:
2026-05-06 06:57:57 UTC
Description:
- CVE-2026-4519: reject leading dashes in webbrowser URLs that could be
treated as command-line options by external browsers; also close a
%action-substitution bypass of the check in UnixBrowser.open()
Updated packages:
-
python-2.7.5-94.0.1.el7_9.tuxcare.els7.x86_64.rpm
sha:eeece0f14e96e1d0901cddaa6974a0975dac474ef56d3218163cb65a0ea775b8
-
python-debug-2.7.5-94.0.1.el7_9.tuxcare.els7.x86_64.rpm
sha:8d4936cef77c974688d86de5bb5074667f364ec4baad8ea2a8e3e939748d19db
-
python-devel-2.7.5-94.0.1.el7_9.tuxcare.els7.x86_64.rpm
sha:7487760e41eb48e2bc1f110b7001c29d207bfc054e77a4b83a830ce10c9a0e5a
-
python-libs-2.7.5-94.0.1.el7_9.tuxcare.els7.i686.rpm
sha:226de80c404a1c22c40e19bf338f120d84390456cb35b0ffa71b5a471b489d44
-
python-libs-2.7.5-94.0.1.el7_9.tuxcare.els7.x86_64.rpm
sha:009f1d54c37e40138af490fc87d40d7d3b07bfebe9a1a5878faeb580d3b14d43
-
python-test-2.7.5-94.0.1.el7_9.tuxcare.els7.x86_64.rpm
sha:82a4c95bd27600f7cafeaddf832f4ff3fa7bf53f3e55b563bf042eb5381ad613
-
python-tools-2.7.5-94.0.1.el7_9.tuxcare.els7.x86_64.rpm
sha:782fb838676816e394e81228c969d0f987d2880dfd079b9c77c4b02fd1a74379
-
tkinter-2.7.5-94.0.1.el7_9.tuxcare.els7.x86_64.rpm
sha:7d707d776669af4e02c3afe2d1ef5279354cbfb7ff086caef00d09fe6e85f9c8
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
