RLSA-2026:12176

Security

Mirrored from RHSA-2026:12176

Issued at: 2026-04-30

Updated at: 2026-05-01

Synopsis

Important: fence-agents security update

Description

The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster.

Security Fix(es):

* cryptography: cryptography Subgroup Attack Due to Missing Subgroup Validation for SECT Curves (CVE-2026-26007)

* pyjwt: PyJWT accepts unknown `crit` header extensions (RFC 7515 ?4.1.11 MUST violation) (CVE-2026-32597)

* pyasn1: pyasn1 Vulnerable to Denial of Service via Unbounded Recursion (CVE-2026-30922)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Affected products

Rocky Linux 8 aarch64

Rocky Linux 8 x86_64

Fixes

2438762

2447194

2448553

CVEs

CVE-2026-26007

CVE-2026-30922

CVE-2026-32597

Affected packages

Rocky Linux 8 x86_64 - AppStream

fence-agents-0:4.2.1-129.el8_10.25.src.rpm

fence-agents-all-0:4.2.1-129.el8_10.25.x86_64.rpm

fence-agents-amt-ws-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-apc-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-apc-snmp-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-bladecenter-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-brocade-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-cisco-mds-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-cisco-ucs-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-common-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-compute-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-debuginfo-0:4.2.1-129.el8_10.25.x86_64.rpm

fence-agents-debugsource-0:4.2.1-129.el8_10.25.x86_64.rpm

fence-agents-drac5-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-eaton-snmp-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-emerson-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-eps-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-heuristics-ping-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-hpblade-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ibmblade-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ibm-powervs-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ibm-vpc-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ifmib-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ilo2-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ilo-moonshot-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ilo-mp-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ilo-ssh-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-intelmodular-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ipdu-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ipmilan-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-kdump-0:4.2.1-129.el8_10.25.x86_64.rpm

fence-agents-kdump-debuginfo-0:4.2.1-129.el8_10.25.x86_64.rpm

fence-agents-kubevirt-0:4.2.1-129.el8_10.25.x86_64.rpm

fence-agents-kubevirt-debuginfo-0:4.2.1-129.el8_10.25.x86_64.rpm

fence-agents-lpar-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-mpath-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-redfish-0:4.2.1-129.el8_10.25.x86_64.rpm

fence-agents-rhevm-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-rsa-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-rsb-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-sbd-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-scsi-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-virsh-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-vmware-rest-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-vmware-soap-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-wti-0:4.2.1-129.el8_10.25.noarch.rpm

Rocky Linux 8 aarch64 - AppStream

fence-agents-0:4.2.1-129.el8_10.25.src.rpm

fence-agents-all-0:4.2.1-129.el8_10.25.aarch64.rpm

fence-agents-amt-ws-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-apc-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-apc-snmp-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-bladecenter-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-brocade-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-cisco-mds-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-cisco-ucs-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-common-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-compute-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-debuginfo-0:4.2.1-129.el8_10.25.aarch64.rpm

fence-agents-debugsource-0:4.2.1-129.el8_10.25.aarch64.rpm

fence-agents-drac5-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-eaton-snmp-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-emerson-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-eps-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-heuristics-ping-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-hpblade-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ibmblade-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ibm-powervs-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ibm-vpc-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ifmib-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ilo2-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ilo-moonshot-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ilo-mp-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ilo-ssh-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-intelmodular-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ipdu-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-ipmilan-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-kdump-0:4.2.1-129.el8_10.25.aarch64.rpm

fence-agents-kdump-debuginfo-0:4.2.1-129.el8_10.25.aarch64.rpm

fence-agents-kubevirt-0:4.2.1-129.el8_10.25.aarch64.rpm

fence-agents-kubevirt-debuginfo-0:4.2.1-129.el8_10.25.aarch64.rpm

fence-agents-mpath-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-redfish-0:4.2.1-129.el8_10.25.aarch64.rpm

fence-agents-rhevm-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-rsa-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-rsb-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-sbd-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-scsi-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-virsh-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-vmware-rest-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-vmware-soap-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-wti-0:4.2.1-129.el8_10.25.noarch.rpm

Rocky Linux 8 x86_64 - HighAvailability

fence-agents-aliyun-0:4.2.1-129.el8_10.25.x86_64.rpm

fence-agents-aliyun-debuginfo-0:4.2.1-129.el8_10.25.x86_64.rpm

fence-agents-aws-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-azure-arm-0:4.2.1-129.el8_10.25.x86_64.rpm

fence-agents-azure-arm-debuginfo-0:4.2.1-129.el8_10.25.x86_64.rpm

fence-agents-gce-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-openstack-0:4.2.1-129.el8_10.25.x86_64.rpm

Rocky Linux 8 x86_64 - ResilientStorage

fence-agents-aliyun-0:4.2.1-129.el8_10.25.x86_64.rpm

fence-agents-aliyun-debuginfo-0:4.2.1-129.el8_10.25.x86_64.rpm

fence-agents-aws-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-azure-arm-0:4.2.1-129.el8_10.25.x86_64.rpm

fence-agents-azure-arm-debuginfo-0:4.2.1-129.el8_10.25.x86_64.rpm

fence-agents-gce-0:4.2.1-129.el8_10.25.noarch.rpm

fence-agents-openstack-0:4.2.1-129.el8_10.25.x86_64.rpm

Rocky Linux 8 aarch64 - ResilientStorage

fence-agents-gce-0:4.2.1-129.el8_10.25.noarch.rpm

Rocky Linux 8 aarch64 - HighAvailability

fence-agents-gce-0:4.2.1-129.el8_10.25.noarch.rpm