- Issued:
- 2024-06-11
- Updated:
- 2024-06-11
RHSA-2024:3811 - Moderate: fence-agents security update
Synopsis
Moderate: fence-agents security update
Type/Severity
Security Advisory Moderate
Topic
An update for fence-agents is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Description
The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster.
Security Fix(es):
- jinja2: accepts keys containing non-attribute characters (CVE-2024-34064)
Solution
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
Affected Products
| Product | Version | Arch |
|---|---|---|
| Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions | 8.8 | x86_64 |
| Red Hat Enterprise Linux for x86_64 - Extended Update Support | 8.8 | x86_64 |
| Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension | 8.8 | x86_64 |
| Red Hat Enterprise Linux for Power, little endian - Extended Update Support | 8.8 | ppc64le |
| Red Hat Enterprise Linux for IBM z Systems - Extended Update Support | 8.8 | s390x |
| Red Hat Enterprise Linux for ARM 64 - Extended Update Support | 8.8 | aarch64 |
| Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions | 8.8 | ppc64le |
| Red Hat Enterprise Linux Server - TUS | 8.8 | x86_64 |
| Red Hat Enterprise Linux Resilient Storage for x86_64 - Extended Update Support | 8.8 | x86_64 |
| Red Hat Enterprise Linux Resilient Storage for Power, little endian - Extended Update Support | 8.8 | ppc64le |
| Red Hat Enterprise Linux Resilient Storage for IBM z Systems - Extended Update Support | 8.8 | s390x |
| Red Hat Enterprise Linux High Availability for x86_64 - Update Services for SAP Solutions | 8.8 | x86_64 |
| Red Hat Enterprise Linux High Availability for x86_64 - Telecommunications Update Service | 8.8 | x86_64 |
| Red Hat Enterprise Linux High Availability for x86_64 - Extended Update Support | 8.8 | x86_64 |
| Red Hat Enterprise Linux High Availability for x86_64 - Extended Update Support Extension | 8.8 | x86_64 |
| Red Hat Enterprise Linux High Availability for Power, little endian - Extended Update Support | 8.8 | ppc64le |
| Red Hat Enterprise Linux High Availability for Power LE - Update Services for SAP Solutions | 8.8 | ppc64le |
| Red Hat Enterprise Linux High Availability (for IBM z Systems) - Extended Update Support | 8.8 | s390x |
| Red Hat Enterprise Linux High Availability (for ARM 64) - Extended Update Support | 8.8 | aarch64 |
Updated Packages
- fence-agents-brocade-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-ipmilan-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-azure-arm-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-kdump-debuginfo-4.2.1-112.el8_8.6.aarch64.rpm
- fence-agents-ilo-mp-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-redfish-4.2.1-112.el8_8.6.x86_64.rpm
- fence-agents-drac5-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-aws-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-gce-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-zvm-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-cisco-ucs-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-4.2.1-112.el8_8.6.src.rpm
- fence-agents-eaton-snmp-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-kubevirt-debuginfo-4.2.1-112.el8_8.6.x86_64.rpm
- fence-agents-kubevirt-debuginfo-4.2.1-112.el8_8.6.ppc64le.rpm
- fence-agents-all-4.2.1-112.el8_8.6.s390x.rpm
- fence-agents-redfish-4.2.1-112.el8_8.6.s390x.rpm
- fence-agents-hpblade-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-cisco-mds-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-debugsource-4.2.1-112.el8_8.6.x86_64.rpm
- fence-agents-ilo-ssh-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-kdump-debuginfo-4.2.1-112.el8_8.6.ppc64le.rpm
- fence-agents-kdump-4.2.1-112.el8_8.6.ppc64le.rpm
- fence-agents-emerson-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-apc-snmp-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-kdump-debuginfo-4.2.1-112.el8_8.6.x86_64.rpm
- fence-agents-common-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-ifmib-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-debugsource-4.2.1-112.el8_8.6.ppc64le.rpm
- fence-agents-kubevirt-debuginfo-4.2.1-112.el8_8.6.s390x.rpm
- fence-agents-eps-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-ilo2-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-ipdu-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-vmware-soap-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-ibm-powervs-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-debugsource-4.2.1-112.el8_8.6.s390x.rpm
- fence-agents-debuginfo-4.2.1-112.el8_8.6.ppc64le.rpm
- fence-agents-ibmblade-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-ilo-moonshot-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-kdump-4.2.1-112.el8_8.6.aarch64.rpm
- fence-agents-debuginfo-4.2.1-112.el8_8.6.x86_64.rpm
- fence-agents-openstack-4.2.1-112.el8_8.6.ppc64le.rpm
- fence-agents-rhevm-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-apc-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-rsa-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-ibm-vpc-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-heuristics-ping-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-intelmodular-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-virsh-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-redfish-4.2.1-112.el8_8.6.ppc64le.rpm
- fence-agents-kubevirt-4.2.1-112.el8_8.6.x86_64.rpm
- fence-agents-openstack-4.2.1-112.el8_8.6.x86_64.rpm
- fence-agents-all-4.2.1-112.el8_8.6.x86_64.rpm
- fence-agents-kubevirt-debuginfo-4.2.1-112.el8_8.6.aarch64.rpm
- fence-agents-mpath-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-all-4.2.1-112.el8_8.6.aarch64.rpm
- fence-agents-debuginfo-4.2.1-112.el8_8.6.s390x.rpm
- fence-agents-debugsource-4.2.1-112.el8_8.6.aarch64.rpm
- fence-agents-compute-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-scsi-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-rsb-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-bladecenter-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-kubevirt-4.2.1-112.el8_8.6.ppc64le.rpm
- fence-agents-redfish-4.2.1-112.el8_8.6.aarch64.rpm
- fence-agents-vmware-rest-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-all-4.2.1-112.el8_8.6.ppc64le.rpm
- fence-agents-kdump-debuginfo-4.2.1-112.el8_8.6.s390x.rpm
- fence-agents-kubevirt-4.2.1-112.el8_8.6.aarch64.rpm
- fence-agents-kdump-4.2.1-112.el8_8.6.x86_64.rpm
- fence-agents-debuginfo-4.2.1-112.el8_8.6.aarch64.rpm
- fence-agents-lpar-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-wti-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-kubevirt-4.2.1-112.el8_8.6.s390x.rpm
- fence-agents-kdump-4.2.1-112.el8_8.6.s390x.rpm
- fence-agents-aliyun-4.2.1-112.el8_8.6.x86_64.rpm
- fence-agents-sbd-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-amt-ws-4.2.1-112.el8_8.6.noarch.rpm
- fence-agents-aliyun-debuginfo-4.2.1-112.el8_8.6.x86_64.rpm
Fixes
CVEs
References
Additional information
- The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
- Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.