Red Hat Python 3.12 Security Update: Potential Code Injection

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

6.8

Red Hat Python 3.12 Security Update: Potential Code Injection

RHSA-2026:3897

Summary

The Python 3.12 software on Red Hat systems may allow an attacker to execute malicious code. This affects any user using Python 3.12 on Red Hat systems. Users should update to the latest version of Python to fix this issue.

What to do

Update redhat python3.12 to version 0:3.12.1-4.el9_4.10.
Update redhat python3.12-debug to version 0:3.12.1-4.el9_4.10.
Update redhat python3.12-debuginfo to version 0:3.12.1-4.el9_4.10.
Update redhat python3.12-debugsource to version 0:3.12.1-4.el9_4.10.
Update redhat python3.12-devel to version 0:3.12.1-4.el9_4.10.
Update redhat python3.12-idle to version 0:3.12.1-4.el9_4.10.
Update redhat python3.12-libs to version 0:3.12.1-4.el9_4.10.
Update redhat python3.12-test to version 0:3.12.1-4.el9_4.10.
Update redhat python3.12-tkinter to version 0:3.12.1-4.el9_4.10.

Affected software

Vendor	Product	Affected versions	Fix available
redhat	python3.12	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10
redhat	python3.12-debug	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10
redhat	python3.12-debuginfo	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10
redhat	python3.12-debugsource	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10
redhat	python3.12-devel	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10
redhat	python3.12-idle	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10
redhat	python3.12-libs	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10
redhat	python3.12-test	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10
redhat	python3.12-tkinter	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10
redhat	python3.12	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10
redhat	python3.12-debug	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10
redhat	python3.12-debuginfo	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10
redhat	python3.12-debugsource	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10
redhat	python3.12-devel	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10
redhat	python3.12-idle	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10
redhat	python3.12-libs	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10
redhat	python3.12-test	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10
redhat	python3.12-tkinter	<= 0:3.12.1-4.el9_4.10	0:3.12.1-4.el9_4.10

Original title

Red Hat Security Advisory: python3.12 security update

osv CVSS3.1 6.8

https://access.redhat.com/errata/RHSA-2026:3897 Vendor Advisory
https://access.redhat.com/security/updates/classification/#moderate Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2418078 Third Party Advisory
https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_3897.j... Vendor Advisory
https://access.redhat.com/security/cve/CVE-2025-13836 Third Party Advisory
https://www.cve.org/CVERecord?id=CVE-2025-13836 Vendor Advisory
https://nvd.nist.gov/vuln/detail/CVE-2025-13836 Vendor Advisory
https://github.com/python/cpython/issues/119451 Third Party Advisory
https://github.com/python/cpython/pull/119454 Third Party Advisory

Published: 6 Mar 2026 · Updated: 6 Mar 2026 · First seen: 6 Mar 2026