RHSA-2024:2952 -- Redhat resource-agentsID: oval:org.secpod.oval:def:509408 | Date: (C)2024-06-05 (M)2024-06-05 |
Class: PATCH | Family: unix |
The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability environment. Security Fix: urllib3: Request body not stripped after redirect from 303 status changes request method to GET pycryptodome: side-channel leakage for OAEP decryption in PyCryptodome and pycryptodomex For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.10 Release Notes linked from the References section.
Platform: |
Red Hat Enterprise Linux 8 |