Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

CVE-2025-6075 — python: Quadratic complexity in os.path.expandvars() with user-controlled template CVE-2025-8291 — cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked CVE-2025-11468 — cpython: Missing character filtering in Python CVE-2025-12084 — cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service CVE-2025-13462 — cpython: cpython: tarfile module misinterprets crafted tar archives leading to data integrity issues CVE-2025-13836 — cpython: Excessive read buffering DoS in http.client CVE-2025-13837 — cpython: Out-of-memory when loading Plist CVE-2025-15282 — cpython: Header injection via newlines in data URL mediatype in Python CVE-2026-0865 — cpython: wsgiref.headers.Headers allows header newline injection in Python CVE-2026-1299 — cpython: email header injection due to unquoted newlines CVE-2026-2297 — cpython: CPython: Logging Bypass in Legacy .pyc File Handling CVE-2026-3446 — python: Python base64: Incomplete data decoding due to premature stop at padding CVE-2026-3479 — python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation CVE-2026-3644 — cpython: Incomplete control character validation in http.cookies CVE-2026-4224 — cpython: Stack overflow parsing XML with deeply nested DTD content models CVE-2026-4519 — python: Python: Command-line option injection in webbrowser.open() via crafted URLs