Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
Red Hat has issued a security advisory for Red Hat Hardened Images RPMs, specifically updating multiple python3. 11 packages to address two vulnerabilities identified as CVE-2025-13462 and CVE-2026-3479. These updates affect various architectures including aarch64 and x86_64. The advisory indicates a low severity level and does not report any known exploits in the wild. No explicit patch links are provided, but the advisory references updated RPM versions that include the fixes.
AI Analysis
Technical Summary
This security advisory from Red Hat addresses vulnerabilities in python3.11 RPM packages included in Red Hat Hardened Images. The update involves multiple python3.11-related packages (such as debug, devel, idle, libs, test, tkinter) for aarch64 and x86_64 architectures. The vulnerabilities fixed are CVE-2025-13462 and CVE-2026-3479, which are associated with CWE-237 (Improper Handling of Exceptional Conditions) and CWE-22 (Path Traversal). The advisory does not provide CVSS scores but classifies the severity as low. The update is available as new RPM versions (3.11.15-4.2.hum1).
Potential Impact
The vulnerabilities addressed are considered low severity and no known exploits have been reported in the wild. The impact is limited to the affected python3.11 packages within Red Hat Hardened Images. The advisory does not specify detailed impact scenarios or exploitation methods.
Mitigation Recommendations
An update to the python3.11 RPM packages is available from Red Hat Hardened Images repositories. Users should apply the updated packages (version 3.11.15-4.2.hum1) to remediate the vulnerabilities CVE-2025-13462 and CVE-2026-3479. Since this is a traditional RPM update, administrators should follow standard package update procedures for their Red Hat Hardened Images environment. Patch status is confirmed by the vendor advisory. No additional mitigation steps are indicated.
Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
Description
Red Hat has issued a security advisory for Red Hat Hardened Images RPMs, specifically updating multiple python3. 11 packages to address two vulnerabilities identified as CVE-2025-13462 and CVE-2026-3479. These updates affect various architectures including aarch64 and x86_64. The advisory indicates a low severity level and does not report any known exploits in the wild. No explicit patch links are provided, but the advisory references updated RPM versions that include the fixes.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This security advisory from Red Hat addresses vulnerabilities in python3.11 RPM packages included in Red Hat Hardened Images. The update involves multiple python3.11-related packages (such as debug, devel, idle, libs, test, tkinter) for aarch64 and x86_64 architectures. The vulnerabilities fixed are CVE-2025-13462 and CVE-2026-3479, which are associated with CWE-237 (Improper Handling of Exceptional Conditions) and CWE-22 (Path Traversal). The advisory does not provide CVSS scores but classifies the severity as low. The update is available as new RPM versions (3.11.15-4.2.hum1).
Potential Impact
The vulnerabilities addressed are considered low severity and no known exploits have been reported in the wild. The impact is limited to the affected python3.11 packages within Red Hat Hardened Images. The advisory does not specify detailed impact scenarios or exploitation methods.
Mitigation Recommendations
An update to the python3.11 RPM packages is available from Red Hat Hardened Images repositories. Users should apply the updated packages (version 3.11.15-4.2.hum1) to remediate the vulnerabilities CVE-2025-13462 and CVE-2026-3479. Since this is a traditional RPM update, administrators should follow standard package update procedures for their Red Hat Hardened Images environment. Patch status is confirmed by the vendor advisory. No additional mitigation steps are indicated.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:11324
- Cve Count
- 2
- Additional Cves
- ["CVE-2026-3479"]
- Cvss Version
- null
Threat ID: 6a23403de29bf47b50c727d8
Added to database: 6/5/2026, 9:31:41 PM
Last enriched: 6/5/2026, 9:32:04 PM
Last updated: 6/6/2026, 1:09:31 AM
Views: 4
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.