{"id":"RHSA-2024:2952","summary":"Red Hat Security Advisory: resource-agents security and bug fix update","modified":"2026-04-02T10:08:38Z","published":"2024-09-30T15:58:59Z","upstream":["CVE-2023-45803","CVE-2023-52323"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2024:2952"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.10_release_notes/index"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1904465"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2076403"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2246840"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2257028"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/RHEL-17416"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_2952.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-45803"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-45803"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-45803"},{"type":"ARTICLE","url":"https://github.com/urllib3/urllib3/commit/4e98d57809dacab1cbe625fddeec1a290c478ea9"},{"type":"ARTICLE","url":"https://github.com/urllib3/urllib3/security/advisories/GHSA-g4mx-q9vg-27p4"},{"type":"ARTICLE","url":"https://www.rfc-editor.org/rfc/rfc9110.html#name-get"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-52323"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-52323"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-52323"},{"type":"ARTICLE","url":"https://github.com/Legrandin/pycryptodome/blob/master/Changelog.rst"},{"type":"ARTICLE","url":"https://pypi.org/project/pycryptodomex/#history"}],"affected":[{"package":{"name":"resource-agents","ecosystem":"Red Hat:enterprise_linux:8::highavailability","purl":"pkg:rpm/redhat/resource-agents"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.9.0-54.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2952.json"}},{"package":{"name":"resource-agents-aliyun","ecosystem":"Red Hat:enterprise_linux:8::highavailability","purl":"pkg:rpm/redhat/resource-agents-aliyun"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.9.0-54.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2952.json"}},{"package":{"name":"resource-agents-aliyun-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::highavailability","purl":"pkg:rpm/redhat/resource-agents-aliyun-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.9.0-54.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2952.json"}},{"package":{"name":"resource-agents-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::highavailability","purl":"pkg:rpm/redhat/resource-agents-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.9.0-54.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2952.json"}},{"package":{"name":"resource-agents-debugsource","ecosystem":"Red Hat:enterprise_linux:8::highavailability","purl":"pkg:rpm/redhat/resource-agents-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.9.0-54.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2952.json"}},{"package":{"name":"resource-agents-gcp","ecosystem":"Red Hat:enterprise_linux:8::highavailability","purl":"pkg:rpm/redhat/resource-agents-gcp"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.9.0-54.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2952.json"}},{"package":{"name":"resource-agents-paf","ecosystem":"Red Hat:enterprise_linux:8::highavailability","purl":"pkg:rpm/redhat/resource-agents-paf"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.9.0-54.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2952.json"}},{"package":{"name":"resource-agents","ecosystem":"Red Hat:enterprise_linux:8::resilientstorage","purl":"pkg:rpm/redhat/resource-agents"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.9.0-54.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2952.json"}},{"package":{"name":"resource-agents-aliyun","ecosystem":"Red Hat:enterprise_linux:8::resilientstorage","purl":"pkg:rpm/redhat/resource-agents-aliyun"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.9.0-54.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2952.json"}},{"package":{"name":"resource-agents-aliyun-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::resilientstorage","purl":"pkg:rpm/redhat/resource-agents-aliyun-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.9.0-54.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2952.json"}},{"package":{"name":"resource-agents-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::resilientstorage","purl":"pkg:rpm/redhat/resource-agents-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.9.0-54.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2952.json"}},{"package":{"name":"resource-agents-debugsource","ecosystem":"Red Hat:enterprise_linux:8::resilientstorage","purl":"pkg:rpm/redhat/resource-agents-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.9.0-54.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2952.json"}},{"package":{"name":"resource-agents-gcp","ecosystem":"Red Hat:enterprise_linux:8::resilientstorage","purl":"pkg:rpm/redhat/resource-agents-gcp"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.9.0-54.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2952.json"}},{"package":{"name":"resource-agents-paf","ecosystem":"Red Hat:enterprise_linux:8::resilientstorage","purl":"pkg:rpm/redhat/resource-agents-paf"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.9.0-54.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:2952.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"}]}