[RLSA-2024:2968] fence-agents security and bug fix update
Severity
Moderate
Affected Packages
45
CVEs
3
An update is available for fence-agents. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster.
Security Fix(es):
urllib3: Request body not stripped after redirect from 303 status changes request method to GET (CVE-2023-45803)
pycryptodome: side-channel leakage for OAEP decryption in PyCryptodome and pycryptodomex (CVE-2023-52323)
jinja2: HTML attribute injection when passing user input as keys to xmlattr filter (CVE-2024-22195)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 8.10 Release Notes linked from the References section.
- ID
- RLSA-2024:2968
- Severity
- moderate
- URL
- https://errata.rockylinux.org/RLSA-2024:2968
- Published
-
2024-06-14T13:59:30
(3 months ago) - Modified
-
2024-06-14T14:02:22
(3 months ago) - Rights
- Copyright 2024 Rocky Enterprise Software Foundation
- Other Advisories
-
-
ALAS2-2024-2387
-
ALAS2-2024-2436
-
ALAS2-2024-2437
-
ALPINE:CVE-2023-45803
-
ALPINE:CVE-2024-22195
-
ALSA-2024:0116
-
ALSA-2024:0464
-
ALSA-2024:2132
-
ALSA-2024:2348
-
ALSA-2024:2968
-
ALSA-2024:2987
-
ALSA-2024:3102
-
ELSA-2024-0116
-
ELSA-2024-0464
-
ELSA-2024-2132
-
ELSA-2024-2348
-
ELSA-2024-2968
-
ELSA-2024-2987
-
ELSA-2024-2988
-
ELSA-2024-3102
-
FEDORA-2023-18f03a150d
-
FEDORA-2023-932b0c86f4
-
FEDORA-2023-dede912109
-
FEDORA-2024-6026572e7d
-
FEDORA-2024-604e4c3509
-
FEDORA-2024-ab372beea4
-
PYSEC-2023-212
-
PYSEC-2024-3
-
RHSA-2024:0116
-
RHSA-2024:0464
-
RHSA-2024:2132
-
RHSA-2024:2348
-
RHSA-2024:2952
-
RHSA-2024:2968
-
RHSA-2024:2987
-
RHSA-2024:2988
-
RHSA-2024:3102
-
RLSA-2024:3102
-
SUSE-SU-2023:4352-1
-
SUSE-SU-2023:4356-1
-
SUSE-SU-2023:4467-1
-
SUSE-SU-2023:4468-1
-
SUSE-SU-2024:0557-1
-
SUSE-SU-2024:0585-1
-
SUSE-SU-2024:0601-1
-
SUSE-SU-2024:1863-1
-
SUSE-SU-2024:1863-2
-
SUSE-SU-2024:1864-1
-
SUSE-SU-2024:2462-1
-
USN-6473-1
-
USN-6473-2
-
USN-6595-1
-
USN-6599-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| CVE | CVE-2023-45803 |
|
|
| CVE | CVE-2023-52323 |
|
|
| CVE | CVE-2024-22195 |
|
|
| Bugzilla | 2246840 |
|
|
| Bugzilla | 2257028 |
|
|
| Bugzilla | 2257854 |
|
|
| Self | RLSA-2024:2968 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/rockylinux/fence-agents-wti?arch=noarch&distro=rockylinux-8 | rockylinux |
 fence-agents-wti
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-vmware-soap?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-vmware-soap
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-vmware-rest?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-vmware-rest
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-virsh?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-virsh
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-scsi?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-scsi
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-sbd?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-sbd
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-rsb?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-rsb
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-rsa?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-rsa
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-rhevm?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-rhevm
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-redfish?arch=x86_64&distro=rockylinux-8 | rockylinux |
fence-agents-redfish
|
< 4.2.1-129.el8 | rockylinux-8 | x86_64 | |
| Affected | pkg:rpm/rockylinux/fence-agents-redfish?arch=aarch64&distro=rockylinux-8 | rockylinux |
fence-agents-redfish
|
< 4.2.1-129.el8 | rockylinux-8 | aarch64 | |
| Affected | pkg:rpm/rockylinux/fence-agents-mpath?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-mpath
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-lpar?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-lpar
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-kubevirt?arch=x86_64&distro=rockylinux-8 | rockylinux |
fence-agents-kubevirt
|
< 4.2.1-129.el8 | rockylinux-8 | x86_64 | |
| Affected | pkg:rpm/rockylinux/fence-agents-kubevirt?arch=aarch64&distro=rockylinux-8 | rockylinux |
fence-agents-kubevirt
|
< 4.2.1-129.el8 | rockylinux-8 | aarch64 | |
| Affected | pkg:rpm/rockylinux/fence-agents-kdump?arch=x86_64&distro=rockylinux-8 | rockylinux |
fence-agents-kdump
|
< 4.2.1-129.el8 | rockylinux-8 | x86_64 | |
| Affected | pkg:rpm/rockylinux/fence-agents-kdump?arch=aarch64&distro=rockylinux-8 | rockylinux |
fence-agents-kdump
|
< 4.2.1-129.el8 | rockylinux-8 | aarch64 | |
| Affected | pkg:rpm/rockylinux/fence-agents-ipmilan?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-ipmilan
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-ipdu?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-ipdu
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-intelmodular?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-intelmodular
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-ilo2?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-ilo2
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-ilo-ssh?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-ilo-ssh
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-ilo-mp?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-ilo-mp
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-ilo-moonshot?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-ilo-moonshot
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-ifmib?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-ifmib
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-ibmblade?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-ibmblade
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-ibm-vpc?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-ibm-vpc
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-ibm-powervs?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-ibm-powervs
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-hpblade?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-hpblade
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-heuristics-ping?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-heuristics-ping
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-eps?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-eps
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-emerson?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-emerson
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-eaton-snmp?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-eaton-snmp
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-drac5?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-drac5
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-compute?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-compute
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-common?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-common
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-cisco-ucs?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-cisco-ucs
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-cisco-mds?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-cisco-mds
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-brocade?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-brocade
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-bladecenter?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-bladecenter
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-apc?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-apc
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-apc-snmp?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-apc-snmp
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-amt-ws?arch=noarch&distro=rockylinux-8 | rockylinux |
fence-agents-amt-ws
|
< 4.2.1-129.el8 | rockylinux-8 | noarch | |
| Affected | pkg:rpm/rockylinux/fence-agents-all?arch=x86_64&distro=rockylinux-8 | rockylinux |
fence-agents-all
|
< 4.2.1-129.el8 | rockylinux-8 | x86_64 | |
| Affected | pkg:rpm/rockylinux/fence-agents-all?arch=aarch64&distro=rockylinux-8 | rockylinux |
fence-agents-all
|
< 4.2.1-129.el8 | rockylinux-8 | aarch64 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |