[RHSA-2024:2968] fence-agents security and bug fix update
The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster.
Security Fix(es):
urllib3: Request body not stripped after redirect from 303 status changes request method to GET (CVE-2023-45803)
pycryptodome: side-channel leakage for OAEP decryption in PyCryptodome and pycryptodomex (CVE-2023-52323)
jinja2: HTML attribute injection when passing user input as keys to xmlattr filter (CVE-2024-22195)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.10 Release Notes linked from the References section.
- ID
- RHSA-2024:2968
- Severity
- moderate
- URL
- https://access.redhat.com/errata/RHSA-2024:2968
- Published
-
2024-05-22T00:00:00
(4 months ago) - Modified
-
2024-05-22T00:00:00
(4 months ago) - Rights
- Copyright 2024 Red Hat, Inc.
- Other Advisories
-
- ALAS2-2024-2387
- ALAS2-2024-2436
- ALAS2-2024-2437
- ALPINE:CVE-2023-45803
- ALPINE:CVE-2024-22195
- ALSA-2024:0116
- ALSA-2024:0464
- ALSA-2024:2132
- ALSA-2024:2348
- ALSA-2024:2968
- ALSA-2024:2987
- ALSA-2024:3102
- ELSA-2024-0116
- ELSA-2024-0464
- ELSA-2024-2132
- ELSA-2024-2348
- ELSA-2024-2968
- ELSA-2024-2987
- ELSA-2024-2988
- ELSA-2024-3102
- FEDORA-2023-18f03a150d
- FEDORA-2023-932b0c86f4
- FEDORA-2023-dede912109
- FEDORA-2024-6026572e7d
- FEDORA-2024-604e4c3509
- FEDORA-2024-ab372beea4
- PYSEC-2023-212
- PYSEC-2024-3
- RHSA-2024:0116
- RHSA-2024:0464
- RHSA-2024:2132
- RHSA-2024:2348
- RHSA-2024:2952
- RHSA-2024:2987
- RHSA-2024:2988
- RHSA-2024:3102
- RLSA-2024:2968
- RLSA-2024:3102
- SUSE-SU-2023:4352-1
- SUSE-SU-2023:4356-1
- SUSE-SU-2023:4467-1
- SUSE-SU-2023:4468-1
- SUSE-SU-2024:0557-1
- SUSE-SU-2024:0585-1
- SUSE-SU-2024:0601-1
- SUSE-SU-2024:1863-1
- SUSE-SU-2024:1863-2
- SUSE-SU-2024:1864-1
- SUSE-SU-2024:2462-1
- USN-6473-1
- USN-6473-2
- USN-6595-1
- USN-6599-1
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 2246840 | https://bugzilla.redhat.com/2246840 | |
Bugzilla | 2257028 | https://bugzilla.redhat.com/2257028 | |
Bugzilla | 2257854 | https://bugzilla.redhat.com/2257854 | |
RHSA | RHSA-2024:2968 | https://access.redhat.com/errata/RHSA-2024:2968 | |
CVE | CVE-2023-45803 | https://access.redhat.com/security/cve/CVE-2023-45803 | |
CVE | CVE-2023-52323 | https://access.redhat.com/security/cve/CVE-2023-52323 | |
CVE | CVE-2024-22195 | https://access.redhat.com/security/cve/CVE-2024-22195 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/redhat/fence-agents-zvm?distro=redhat-8 | redhat | fence-agents-zvm | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-wti?distro=redhat-8 | redhat | fence-agents-wti | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-vmware-soap?distro=redhat-8 | redhat | fence-agents-vmware-soap | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-vmware-rest?distro=redhat-8 | redhat | fence-agents-vmware-rest | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-virsh?distro=redhat-8 | redhat | fence-agents-virsh | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-scsi?distro=redhat-8 | redhat | fence-agents-scsi | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-sbd?distro=redhat-8 | redhat | fence-agents-sbd | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-rsb?distro=redhat-8 | redhat | fence-agents-rsb | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-rsa?distro=redhat-8 | redhat | fence-agents-rsa | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-rhevm?distro=redhat-8 | redhat | fence-agents-rhevm | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-redfish?arch=x86_64&distro=redhat-8 | redhat | fence-agents-redfish | < 4.2.1-129.el8 | redhat-8 | x86_64 | |
Affected | pkg:rpm/redhat/fence-agents-redfish?arch=s390x&distro=redhat-8 | redhat | fence-agents-redfish | < 4.2.1-129.el8 | redhat-8 | s390x | |
Affected | pkg:rpm/redhat/fence-agents-redfish?arch=ppc64le&distro=redhat-8 | redhat | fence-agents-redfish | < 4.2.1-129.el8 | redhat-8 | ppc64le | |
Affected | pkg:rpm/redhat/fence-agents-redfish?arch=aarch64&distro=redhat-8 | redhat | fence-agents-redfish | < 4.2.1-129.el8 | redhat-8 | aarch64 | |
Affected | pkg:rpm/redhat/fence-agents-openstack?arch=x86_64&distro=redhat-8 | redhat | fence-agents-openstack | < 4.2.1-129.el8 | redhat-8 | x86_64 | |
Affected | pkg:rpm/redhat/fence-agents-openstack?arch=ppc64le&distro=redhat-8 | redhat | fence-agents-openstack | < 4.2.1-129.el8 | redhat-8 | ppc64le | |
Affected | pkg:rpm/redhat/fence-agents-mpath?distro=redhat-8 | redhat | fence-agents-mpath | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-lpar?distro=redhat-8 | redhat | fence-agents-lpar | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-kubevirt?arch=x86_64&distro=redhat-8 | redhat | fence-agents-kubevirt | < 4.2.1-129.el8 | redhat-8 | x86_64 | |
Affected | pkg:rpm/redhat/fence-agents-kubevirt?arch=s390x&distro=redhat-8 | redhat | fence-agents-kubevirt | < 4.2.1-129.el8 | redhat-8 | s390x | |
Affected | pkg:rpm/redhat/fence-agents-kubevirt?arch=ppc64le&distro=redhat-8 | redhat | fence-agents-kubevirt | < 4.2.1-129.el8 | redhat-8 | ppc64le | |
Affected | pkg:rpm/redhat/fence-agents-kubevirt?arch=aarch64&distro=redhat-8 | redhat | fence-agents-kubevirt | < 4.2.1-129.el8 | redhat-8 | aarch64 | |
Affected | pkg:rpm/redhat/fence-agents-kdump?arch=x86_64&distro=redhat-8 | redhat | fence-agents-kdump | < 4.2.1-129.el8 | redhat-8 | x86_64 | |
Affected | pkg:rpm/redhat/fence-agents-kdump?arch=s390x&distro=redhat-8 | redhat | fence-agents-kdump | < 4.2.1-129.el8 | redhat-8 | s390x | |
Affected | pkg:rpm/redhat/fence-agents-kdump?arch=ppc64le&distro=redhat-8 | redhat | fence-agents-kdump | < 4.2.1-129.el8 | redhat-8 | ppc64le | |
Affected | pkg:rpm/redhat/fence-agents-kdump?arch=aarch64&distro=redhat-8 | redhat | fence-agents-kdump | < 4.2.1-129.el8 | redhat-8 | aarch64 | |
Affected | pkg:rpm/redhat/fence-agents-ipmilan?distro=redhat-8 | redhat | fence-agents-ipmilan | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-ipdu?distro=redhat-8 | redhat | fence-agents-ipdu | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-intelmodular?distro=redhat-8 | redhat | fence-agents-intelmodular | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-ilo2?distro=redhat-8 | redhat | fence-agents-ilo2 | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-ilo-ssh?distro=redhat-8 | redhat | fence-agents-ilo-ssh | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-ilo-mp?distro=redhat-8 | redhat | fence-agents-ilo-mp | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-ilo-moonshot?distro=redhat-8 | redhat | fence-agents-ilo-moonshot | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-ifmib?distro=redhat-8 | redhat | fence-agents-ifmib | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-ibmblade?distro=redhat-8 | redhat | fence-agents-ibmblade | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-ibm-vpc?distro=redhat-8 | redhat | fence-agents-ibm-vpc | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-ibm-powervs?distro=redhat-8 | redhat | fence-agents-ibm-powervs | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-hpblade?distro=redhat-8 | redhat | fence-agents-hpblade | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-heuristics-ping?distro=redhat-8 | redhat | fence-agents-heuristics-ping | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-gce?distro=redhat-8 | redhat | fence-agents-gce | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-eps?distro=redhat-8 | redhat | fence-agents-eps | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-emerson?distro=redhat-8 | redhat | fence-agents-emerson | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-eaton-snmp?distro=redhat-8 | redhat | fence-agents-eaton-snmp | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-drac5?distro=redhat-8 | redhat | fence-agents-drac5 | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-compute?distro=redhat-8 | redhat | fence-agents-compute | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-common?distro=redhat-8 | redhat | fence-agents-common | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-cisco-ucs?distro=redhat-8 | redhat | fence-agents-cisco-ucs | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-cisco-mds?distro=redhat-8 | redhat | fence-agents-cisco-mds | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-brocade?distro=redhat-8 | redhat | fence-agents-brocade | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-bladecenter?distro=redhat-8 | redhat | fence-agents-bladecenter | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-azure-arm?distro=redhat-8 | redhat | fence-agents-azure-arm | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-aws?distro=redhat-8 | redhat | fence-agents-aws | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-apc?distro=redhat-8 | redhat | fence-agents-apc | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-apc-snmp?distro=redhat-8 | redhat | fence-agents-apc-snmp | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-amt-ws?distro=redhat-8 | redhat | fence-agents-amt-ws | < 4.2.1-129.el8 | redhat-8 | ||
Affected | pkg:rpm/redhat/fence-agents-all?arch=x86_64&distro=redhat-8 | redhat | fence-agents-all | < 4.2.1-129.el8 | redhat-8 | x86_64 | |
Affected | pkg:rpm/redhat/fence-agents-all?arch=s390x&distro=redhat-8 | redhat | fence-agents-all | < 4.2.1-129.el8 | redhat-8 | s390x | |
Affected | pkg:rpm/redhat/fence-agents-all?arch=ppc64le&distro=redhat-8 | redhat | fence-agents-all | < 4.2.1-129.el8 | redhat-8 | ppc64le | |
Affected | pkg:rpm/redhat/fence-agents-all?arch=aarch64&distro=redhat-8 | redhat | fence-agents-all | < 4.2.1-129.el8 | redhat-8 | aarch64 | |
Affected | pkg:rpm/redhat/fence-agents-aliyun?arch=x86_64&distro=redhat-8 | redhat | fence-agents-aliyun | < 4.2.1-129.el8 | redhat-8 | x86_64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |