Severity:
('Low', ['ELSLANG-26211'])
Release date:
2026-04-17 10:09:11 UTC
Description:
* SECURITY UPDATE: command-line option injection in webbrowser.open()
- debian/patches/CVE-2026-4519.patch: reject leading dashes in
webbrowser.open() URLs to prevent command-line option injection
in browser subprocesses
- CVE-2026-4519
Updated packages:
-
alt-python36_3.6.15-29_amd64.deb
sha:1f26f79ab3ff497e35deeb3e49cbc9bb464b6986
-
alt-python36-debug_3.6.15-29_amd64.deb
sha:2c3c3c583b2f01a100c2ddbe86ace752335283ab
-
alt-python36-devel_3.6.15-29_amd64.deb
sha:7b046143cd46001fb97033b4b2cc99a0807d7fd2
-
alt-python36-libs_3.6.15-29_amd64.deb
sha:1f9dfff38fc40551c51f97985d868e21520c24d0
-
alt-python36-test_3.6.15-29_amd64.deb
sha:d29f9cfd713aa9955ad278ac6dc6c82f8da1753a
-
alt-python36-tkinter_3.6.15-29_amd64.deb
sha:93403ccc959c9aa6d0f4853063624883dd914135
-
alt-python36-tools_3.6.15-29_amd64.deb
sha:5af02f0c989685d93d0d7e3fe58f6658bfe793b9
-
alt-python36_3.6.15-29_arm64.deb
sha:8f2ebf5bfa8d0b8dc00d0b290412361a8acd9c2a
-
alt-python36-debug_3.6.15-29_arm64.deb
sha:dd955a1b0efc29cb338d7e42a3eee383234e8a5c
-
alt-python36-devel_3.6.15-29_arm64.deb
sha:f43ccee0281c46c4da349c494d000bfc0373b300
-
alt-python36-libs_3.6.15-29_arm64.deb
sha:afd1c09b92ae5a8acc7b64bc8089c2059ea6535b
-
alt-python36-test_3.6.15-29_arm64.deb
sha:fd34d21bb1c4f006927e0a0bf5ba27c6be14eac6
-
alt-python36-tkinter_3.6.15-29_arm64.deb
sha:f4ac8ad8d77a22b8a7ee02253bdf5fcf0fe9ac91
-
alt-python36-tools_3.6.15-29_arm64.deb
sha:fd0085755ad120b3671e12dd56547af723f1c24a
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
