Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.5
Red Hat Python Library Vulnerability: Unauthorized Code Execution
RHSA-2026:4143
Summary
A security update is available for the Python pyasn1 library on Red Hat systems. This update addresses a potential security risk where an attacker could execute malicious code. It is recommended to update the library to the latest version to fix this issue.
What to do
- Update redhat python-pyasn1 to version 0:0.4.8-6.el9_4.1.
- Update redhat python3-pyasn1 to version 0:0.4.8-6.el9_4.1.
- Update redhat python3-pyasn1-modules to version 0:0.4.8-6.el9_4.1.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| redhat | python-pyasn1 | <= 0:0.4.8-6.el9_4.1 | 0:0.4.8-6.el9_4.1 |
| redhat | python3-pyasn1 | <= 0:0.4.8-6.el9_4.1 | 0:0.4.8-6.el9_4.1 |
| redhat | python3-pyasn1-modules | <= 0:0.4.8-6.el9_4.1 | 0:0.4.8-6.el9_4.1 |
Original title
Red Hat Security Advisory: python-pyasn1 security update
osv CVSS3.1
7.5
- https://access.redhat.com/errata/RHSA-2026:4143 Vendor Advisory
- https://access.redhat.com/security/updates/classification/#important Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2430472 Third Party Advisory
- https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_4143.j... Vendor Advisory
- https://access.redhat.com/security/cve/CVE-2026-23490 Third Party Advisory
- https://www.cve.org/CVERecord?id=CVE-2026-23490 Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-23490 Vendor Advisory
- https://github.com/pyasn1/pyasn1/commit/3908f144229eed4df24bd569d16e5991ace44970 Third Party Advisory
- https://github.com/pyasn1/pyasn1/releases/tag/v0.6.2 Third Party Advisory
- https://github.com/pyasn1/pyasn1/security/advisories/GHSA-63vm-454h-vhhq Third Party Advisory
Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026