AlmaLinux 2318 Published by

The following updates are available for AlmaLinux:

ALSA-2023:7753 Moderate: fence-agents security update
ALSA-2023:7876 Moderate: opensc security update
ALSA-2023:7877 Low: openssl security update




ALSA-2023:7753 Moderate: fence-agents security update


ID:
ALSA-2023:7753

Title:
ALSA-2023:7753 Moderate: fence-agents security update

Type:
security

Severity:
moderate

Release date:
2023-12-15

Description
The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster.
Security Fix(es):
* python-certifi: Removal of e-Tugra root certificate (CVE-2023-37920)
* python-urllib3: Cookie request header isn't stripped during cross-origin redirects (CVE-2023-43804)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:
CVE-2023-37920
CVE-2023-43804
RHSA-2023:7753
ALSA-2023:7753

Updated packages listed below:
Architecture
Package
Checksum
aarch64
fence-agents-redfish-4.10.0-55.el9_3.2.alma.1.aarch64.rpm
0e22161207b73980bc529eda981537995643da6090a547b1dca66444e99ae8d1
aarch64
fence-agents-kubevirt-4.10.0-55.el9_3.2.alma.1.aarch64.rpm
13d3f20ba9f2aca39ad3395ae7a315b0d0a083eb8b908d8d7c608aeee604b877
aarch64
fence-agents-kdump-4.10.0-55.el9_3.2.alma.1.aarch64.rpm
43d45781a395b32dc90376e350438d52f3782050a78fc1dc371bb82597c58427
aarch64
fence-agents-all-4.10.0-55.el9_3.2.alma.1.aarch64.rpm
56e734cabae85b1704be685cc318ffd0f0cb4c6baff4956bc4bb4c7d72a2dc62
noarch
fence-agents-ilo-moonshot-4.10.0-55.el9_3.2.alma.1.noarch.rpm
0774b5fd6953d1840dd201302d2a07dabb2f3825dba8d5acdabe4f2ac6424f62
noarch
fence-agents-apc-snmp-4.10.0-55.el9_3.2.alma.1.noarch.rpm
106dc287e7662e2058e07f2fff33bc7299b26df3fbf73219e166fc47eea64767
noarch
fence-agents-ilo-ssh-4.10.0-55.el9_3.2.alma.1.noarch.rpm
148bfe898346b4096e3674e07dba779fcc5288da1bbe10dab0538904fe4003d3
noarch
fence-agents-ilo-mp-4.10.0-55.el9_3.2.alma.1.noarch.rpm
20a70f2e6b200ab5c7a23757adbba72cd83e3240d9e9a56713ac5338cf9e8204
noarch
fence-agents-apc-4.10.0-55.el9_3.2.alma.1.noarch.rpm
285eef67044d6d22420aed207fdfaa25e36f7a166acf11dbe229646140afbd7a
noarch
fence-agents-lpar-4.10.0-55.el9_3.2.alma.1.noarch.rpm
33a5b8da46cb085e359a0e9a5c155df46a61c7d0ef94e98937e88459dca8d1a5
noarch
fence-agents-rsa-4.10.0-55.el9_3.2.alma.1.noarch.rpm
3d37785c38c7e6ec10a24327b94384092055bd19de5db7d15ea55dae14576828
noarch
fence-agents-wti-4.10.0-55.el9_3.2.alma.1.noarch.rpm
3da950a48176c5eb863e1d54e95f06c2c5a6b341d8033c5c966d81e81a736d03
noarch
fence-agents-drac5-4.10.0-55.el9_3.2.alma.1.noarch.rpm
3e2ce08dfa8205a3fa34b13b9ca884fbb259f8a5794a749a58e64bca0e5dd192
noarch
fence-agents-vmware-rest-4.10.0-55.el9_3.2.alma.1.noarch.rpm
4169d4421a2e45e9ee37c0ed8f344f0d3f617f12cf1a3f4a67f5b91045a02a1c
noarch
fence-agents-intelmodular-4.10.0-55.el9_3.2.alma.1.noarch.rpm
4a25516f9dce16bfa8206ace600d54644511a73b3fc74f69048170a4caff15b9
noarch
fence-agents-ipdu-4.10.0-55.el9_3.2.alma.1.noarch.rpm
4b3b7f532e932b3b0b13124901555283682bc464d9db599a54f10d7def61e42a
noarch
fence-agents-mpath-4.10.0-55.el9_3.2.alma.1.noarch.rpm
57b95fe6a43d5ad8ac8317aec1eef64af0bb4c4aac6ff8a97a54dc01a5a1811e
noarch
fence-agents-rhevm-4.10.0-55.el9_3.2.alma.1.noarch.rpm
5aa129047b763b4eece8ac62e6a59dfcb1ba5c70952c70fc8d7253c41ead937b
noarch
fence-agents-rsb-4.10.0-55.el9_3.2.alma.1.noarch.rpm
65cf049f285bcb7f184c60e7370525762c1e12e7de22ed9ee0ee00e95c6fb719
noarch
fence-agents-vmware-soap-4.10.0-55.el9_3.2.alma.1.noarch.rpm
7525feef5d0318f19807590b1b787a13ef6bcce8bd15ca1e8f159d3d4031234b
noarch
fence-agents-ilo2-4.10.0-55.el9_3.2.alma.1.noarch.rpm
7725ab70debca1bf55d2aaafe8f10bf690208cbd95a03c13e9f558581efa1004
noarch
fence-agents-eps-4.10.0-55.el9_3.2.alma.1.noarch.rpm
7870d4e39fd1fc78ede73d265c2f811005a2bd5382c208d06f13b0b2b77d92a1
noarch
fence-agents-ibm-vpc-4.10.0-55.el9_3.2.alma.1.noarch.rpm
7945b340fe328494dd4f3e89fb3ceb0c36fb0a70648bc9bbbf1a938ff741b364
noarch
fence-agents-ibm-powervs-4.10.0-55.el9_3.2.alma.1.noarch.rpm
80eff58a1a89b97995a951a4efcecc45eefbbc90757a0c4d7d1024bae7fa2edf
noarch
fence-agents-cisco-ucs-4.10.0-55.el9_3.2.alma.1.noarch.rpm
9095ee1c041d27f0b44888a516e9f0e6bdf4aac6ecbad39cf100a5760d7d8851
noarch
fence-agents-hpblade-4.10.0-55.el9_3.2.alma.1.noarch.rpm
a1dff75309475893bd0b9bc853fa0eab47a4d00ca35e498e61f778c02c78ee8d
noarch
fence-agents-eaton-snmp-4.10.0-55.el9_3.2.alma.1.noarch.rpm
a5a5dbb4bd033180b47e29d8a73a03e0421700ba6ecfbf4188bfe551c38dc55b
noarch
fence-agents-brocade-4.10.0-55.el9_3.2.alma.1.noarch.rpm
a9a508c986262457a8c63ad41a4f78a3859b45eebdf66ba8828a06c371282a40
noarch
fence-agents-emerson-4.10.0-55.el9_3.2.alma.1.noarch.rpm
be36ebc5d13fd1f105db4f09278ae00024a66fdf0f7118e1b83f733dbcd8ed8c
noarch
fence-agents-cisco-mds-4.10.0-55.el9_3.2.alma.1.noarch.rpm
cc1d2b762b2a884fe15956d1765ee70c26bda2e4801cb208c05c8b5dbbd120e6
noarch
fence-agents-bladecenter-4.10.0-55.el9_3.2.alma.1.noarch.rpm
cec0fe0c6b37826cd8128813749cac798af99d2582be5d4a8cb396bbcc81d795
noarch
fence-agents-amt-ws-4.10.0-55.el9_3.2.alma.1.noarch.rpm
cfdca26c935438d47c526d7c5c6d4a13bda0faf67006d5aaab0851bb6a05c97a
noarch
fence-agents-common-4.10.0-55.el9_3.2.alma.1.noarch.rpm
dc2d621180d9db27968919115009987ddf187fba19a3589f99e1186e8040865b
noarch
fence-agents-ibmblade-4.10.0-55.el9_3.2.alma.1.noarch.rpm
e3b62c965c1558e960e1b6136da31bc9a243a6689c34f6fbe3afef0e4bfd8600
noarch
fence-agents-virsh-4.10.0-55.el9_3.2.alma.1.noarch.rpm
ef5db45357e983592d039b048539ec273e77876282975353eb099a6599f9b9c5
noarch
fence-agents-ipmilan-4.10.0-55.el9_3.2.alma.1.noarch.rpm
f03ba625e677cb2ef8a74d0e0bd5a8967079040e34a9b9be62698f72638700ef
noarch
fence-agents-ifmib-4.10.0-55.el9_3.2.alma.1.noarch.rpm
f2adde5b8705033afc162c59de42d7245e138f7f7564b114ab329bddf240defc
noarch
fence-agents-sbd-4.10.0-55.el9_3.2.alma.1.noarch.rpm
f51cbb9a7a64cbb0c4d2b2a91ef30844b6286573233e87e3ee5c386edb4ae223
noarch
fence-agents-heuristics-ping-4.10.0-55.el9_3.2.alma.1.noarch.rpm
f633c2aab0b179972600b241fdc9c1443ae379604aa62c58683927f32a4e1f76
noarch
fence-agents-scsi-4.10.0-55.el9_3.2.alma.1.noarch.rpm
fb4298c84903d1f87eee188af15917a9907447a29b27c64d9d657d621c5471bf
ppc64le
fence-agents-kdump-4.10.0-55.el9_3.2.alma.1.ppc64le.rpm
0b7dedfa103557f6ae19169fdaa21fad095ed2738d49a9c21bb85ada81d70be9
ppc64le
fence-agents-redfish-4.10.0-55.el9_3.2.alma.1.ppc64le.rpm
29692eefe340150348e906be26d36013a10a61a015db82983567a913dc11b831
ppc64le
fence-agents-compute-4.10.0-55.el9_3.2.alma.1.ppc64le.rpm
2980f237fe224da97f8ff790864302c52810d4d727da45eeb24f7d45fb4151f7
ppc64le
fence-agents-kubevirt-4.10.0-55.el9_3.2.alma.1.ppc64le.rpm
2fedd551d66d70f0797bcba466f1c391f8fe107db427f8154a97d3468b176a50
ppc64le
fence-agents-all-4.10.0-55.el9_3.2.alma.1.ppc64le.rpm
5bb23433c9869aefe807adfc1a7a865c3efe57dd6f90cbb00640c7b0e4e8d502
ppc64le
fence-agents-openstack-4.10.0-55.el9_3.2.alma.1.ppc64le.rpm
8282311092f141db115227d32f3ae38ceeab2ebb978eed3deb830f87283b8f79
s390x
fence-agents-kubevirt-4.10.0-55.el9_3.2.alma.1.s390x.rpm
1c990ca2b2187755d8c2aa4304c75ebcbc714bebbfb688273094709334b998fc
s390x
fence-agents-all-4.10.0-55.el9_3.2.alma.1.s390x.rpm
4b157164165689132c2f89605400e2d221194088f46c3209a7360ef8c8a34824
s390x
fence-agents-zvm-4.10.0-55.el9_3.2.alma.1.s390x.rpm
6cc68ada904b108a60abded722d6a0a5f61378daa0cfc5902095d5761928bad7
s390x
fence-agents-redfish-4.10.0-55.el9_3.2.alma.1.s390x.rpm
7fa74ea46d60f699ac8f132d52531d0df43792884ed564de624ed48ad894ef09
s390x
fence-agents-kdump-4.10.0-55.el9_3.2.alma.1.s390x.rpm
ac353adf12b936662a9d0b486784071cede95c6998dd831943b65f0fff249496
x86_64
fence-virtd-multicast-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
15c76fd2fa16a463665dfd1d4188fa1f4031fb9bf65fde7fa6781b02e1585f79
x86_64
fence-agents-aws-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
1fda3c2d88a308e1d9f9fdc0ef86d3c65bf48351d863b0e6b53ae133b5675f36
x86_64
fence-virt-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
313f4153f71f601cb2d59ca69e7a06cbc50ad91745e91e1cc9e7da0de80c1a34
x86_64
fence-agents-redfish-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
56e66add3c7b600a724f9eb3e82505dbb801b1d13f1d9dda326c56b012fcdcd3
x86_64
ha-cloud-support-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
73adca2cda5d4e1a0eb754a29ef2409d90b0d0d750f5bb5b822bbd46a34fdaf1
x86_64
fence-virtd-tcp-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
7fe006fc2ddcc7e05a04fa8c44ab8c32c9034bb192a9738ce1e7533f0a02db10
x86_64
fence-agents-azure-arm-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
8643c5aa4ec102cc007e86f5b09e539f3bdd9e13fe83b88fc85df99ddc8ba32c
x86_64
fence-virtd-libvirt-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
886ca54431808400c58d6ea27a845fd4829332ecbf8bd3c512de1f0e69110447
x86_64
fence-agents-gce-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
9e2a6b959241d44f698c19710b5fe1d0b4b7ca6ffb18df30539c8c5f7049242b
x86_64
fence-agents-compute-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
aabda79b79071deb8fcb14dbcd6d73d3cdc3c169602cf7d7e8cc98e24613853e
x86_64
fence-virtd-cpg-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
ade071622015880c95c7601eebf55797eaf6fb1760536b6fff5dcc11c40dcef8
x86_64
fence-agents-kubevirt-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
c81521ed3b5504b92619464484d6c9f0901557c624e5965ad70482528bbed1b5
x86_64
fence-virtd-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
cb316bc6a9827fac2f8765f6b2f1913b151606eea828f76bd087ef2f35a0e976
x86_64
fence-virtd-serial-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
cb42e8322111e712952c321b1b31ccb2cd8918c99414b514734cfa1a9080d8d9
x86_64
fence-agents-all-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
d00da0320c5fdf2606af5bd6acb3a018734e382972086c3885b8f57b36302905
x86_64
fence-agents-kdump-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
dcff7f48d08c19b6af7c59875717469a4944df78e3bef07d6e3b30a30af29ab9
x86_64
fence-agents-openstack-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
eec91a9f2a8ae7e18c7f8b8bc6d7d1127560554bb0c20f2f1c259d2977fa6743
x86_64
fence-agents-aliyun-4.10.0-55.el9_3.2.alma.1.x86_64.rpm
f7522d2a6ebfcac674941210ad3211a390f84f2a7189131cc9d3edb58d6c16cc

Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.

  ALSA-2023:7753 Moderate: fence-agents security update



ALSA-2023:7876 Moderate: opensc security update


ID:
ALSA-2023:7876

Title:
ALSA-2023:7876 Moderate: opensc security update

Type:
security

Severity:
moderate

Release date:
2023-12-20

Description
The OpenSC set of libraries and utilities provides support for working with smart cards. OpenSC focuses on cards that support cryptographic operations and enables their use for authentication, mail encryption, or digital signatures.
Security Fix(es):
* OpenSC: Potential PIN bypass when card tracks its own login state (CVE-2023-40660)
* OpenSC: multiple memory issues with pkcs15-init (enrollment tool) (CVE-2023-40661)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:
CVE-2023-40660
CVE-2023-40661
RHSA-2023:7876
ALSA-2023:7876

Updated packages listed below:
Architecture
Package
Checksum
aarch64
opensc-0.20.0-7.el8_9.aarch64.rpm
aefc14a7dfa169ad78c4927ef6a9ade58485a64188e7b1dbc8647ebc345f1767
i686
opensc-0.20.0-7.el8_9.i686.rpm
8a30002915a7089552f8d65f3af19fbfb84896532452293c74a396ee8d23e92d
ppc64le
opensc-0.20.0-7.el8_9.ppc64le.rpm
bbf381e130679474815808f68ac043cd5b281776ea361a6626dfb86cd8c656c2
s390x
opensc-0.20.0-7.el8_9.s390x.rpm
d8673d96c9d737a5e36785db8b9e9bc23d4f398149c58d28f3c728c2a36d393e
x86_64
opensc-0.20.0-7.el8_9.x86_64.rpm
e73e215cb893bcc747a51f68ae3ce5b1b87bd4e1b590f7c662429312dc32d468

Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.

  ALSA-2023:7876 Moderate: opensc security update



ALSA-2023:7877 Low: openssl security update


ID:
ALSA-2023:7877

Title:
ALSA-2023:7877 Low: openssl security update

Type:
security

Severity:
low

Release date:
2023-12-20

Description
OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.
Security Fix(es):
* openssl: Excessive time spent checking DH keys and parameters (CVE-2023-3446)
* OpenSSL: Excessive time spent checking DH q parameter value (CVE-2023-3817)
* openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow (CVE-2023-5678)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:
CVE-2023-3446
CVE-2023-3817
CVE-2023-5678
RHSA-2023:7877
ALSA-2023:7877

Updated packages listed below:
Architecture
Package
Checksum
aarch64
openssl-1.1.1k-12.el8_9.aarch64.rpm
67f541e4b37ffd155dc1b7a2e1122467315a671c342520da158529bf43d5665b
aarch64
openssl-perl-1.1.1k-12.el8_9.aarch64.rpm
b21c60f689738c42de58e3fff837a238b3eb095e40333dbfc2be168aafa8a6ac
aarch64
openssl-libs-1.1.1k-12.el8_9.aarch64.rpm
bb0009f1fb0f018398a005b7f00ea94ac0671b2782eff2fa08e94bbc21d85e67
aarch64
openssl-devel-1.1.1k-12.el8_9.aarch64.rpm
dee198c1ad63849839bf6abf106fcfa74cb2a7305906265685cf25edb254a8e1
i686
openssl-libs-1.1.1k-12.el8_9.i686.rpm
9d81254e5e3b13f4b97d567711723f99cd320e2f48a55e2b4417d9895d16d4e5
i686
openssl-devel-1.1.1k-12.el8_9.i686.rpm
dc1db1d29fad3009895a7b9b2e2b8516627c8b0bd1580589cd70cd7ab5d0c98b
ppc64le
openssl-devel-1.1.1k-12.el8_9.ppc64le.rpm
51e05738886e88527193b7fa91d6a5e900ae32cbc534f1dd4a8dafeb7de05628
ppc64le
openssl-perl-1.1.1k-12.el8_9.ppc64le.rpm
57e7af5860e39d650e1fd214261332e956e321d8f782982128c99e6e1e2053f7
ppc64le
openssl-libs-1.1.1k-12.el8_9.ppc64le.rpm
742f1d6a36a76ea4fcddb3491b18002db26f616a97080e7c6ae779864b0f3a51
ppc64le
openssl-1.1.1k-12.el8_9.ppc64le.rpm
af5b3a558ccaca71322b96867ee2018f3354c7974cca9a4cf7d717fab5938e8b
s390x
openssl-devel-1.1.1k-12.el8_9.s390x.rpm
00a2665756f7a2e0c7ef8d84282b0e5a4eeaf0ef61ac5a92bade9404b233b24e
s390x
openssl-libs-1.1.1k-12.el8_9.s390x.rpm
2f26818acc22a8bec9473425ffa6db17993dfcf512eed3ce6798e452dbdd43e8
s390x
openssl-perl-1.1.1k-12.el8_9.s390x.rpm
9de161dca8857183de2d163a21c5470ffa3d4d3cdcc9924e8ebc8c71ff7c865f
s390x
openssl-1.1.1k-12.el8_9.s390x.rpm
a5df1e90c3579169db49ec684aa58dd2b6163c0d4eadc08635954dc50d076629
x86_64
openssl-1.1.1k-12.el8_9.x86_64.rpm
200fb9a58e99c9b959018c440e65fc40b49c6d06cab99a40c8a349e38bb330b6
x86_64
openssl-libs-1.1.1k-12.el8_9.x86_64.rpm
2204418af379a749ed66d62cc55b7f3537eced0922a4716fbf8999b3e1409975
x86_64
openssl-perl-1.1.1k-12.el8_9.x86_64.rpm
254cf7d411ce7d2ba2b2c987faefc4b72a931b9f464512755c08d241295b64a1
x86_64
openssl-devel-1.1.1k-12.el8_9.x86_64.rpm
563667676e100bb9bff389a36b8d97ac1b770c9d6cedb4904dbabf0c384391fb

Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.

  ALSA-2023:7877 Low: openssl security update