Oval Definition:oval:com.redhat.rhsa:def:20214139
Revision Date:2021-11-09Version:636
Title:RHSA-2021:4139: resource-agents security, bug fix, and enhancement update (Moderate)
Description:The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment.

Security Fix(es):

  • python-pygments: Infinite loop in SML lexer may lead to DoS (CVE-2021-20270)

  • python-pygments: ReDoS in multiple lexers (CVE-2021-27291)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

    Additional Changes:

    For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.5 Release Notes linked from the References section.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2021-20270
    CVE-2021-27291
    RHSA-2021:4139
    Platform(s):Red Hat Enterprise Linux 8
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 8 is installed
  • OR Red Hat CoreOS 4 is installed
  • AND
  • resource-agents is earlier than 0:4.1.1-98.el8
  • AND resource-agents is signed with Red Hat redhatrelease2 key
  • resource-agents-aliyun is earlier than 0:4.1.1-98.el8
  • AND resource-agents-aliyun is signed with Red Hat redhatrelease2 key
  • resource-agents-gcp is earlier than 0:4.1.1-98.el8
  • AND resource-agents-gcp is signed with Red Hat redhatrelease2 key
  • resource-agents-paf is earlier than 0:4.1.1-98.el8
  • AND resource-agents-paf is signed with Red Hat redhatrelease2 key
    • BACK