Stay Secure with the Latest Linux Advisories

security advisorysecurity issueimportant

Alpine Linux 3.17 RLSB-2034-10231 Major Network Vulnerability Discovered

Important: fence-agents security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:13672", "synopsis": "Important: fence-agents security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for fence-agents.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster. \n\nSecurity Fix(es):\n\n* cryptography: cryptography Subgroup Attack Due to Missing Subgroup Validation for SECT Curves (CVE-2026-26007)\n\n* pyjwt: PyJWT accepts unknown `crit` header extensions (RFC 7515 ?4.1.11 MUST violation) (CVE-2026-32597)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2438762", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2438762", "description": ""}, {"ticket": "2447194", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2447194", "description": ""}], "cves": [{"name": "CVE-2026-26007", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-26007", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N", "cvss3BaseScore": "7.4", "cwe": "CWE-354"}, {"name": "CVE-2026-32597", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32597", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "cvss3BaseScore": "7.5", "cwe": "CWE-347"}], "references": [], "publishedAt": "2026-05-06T06:02:14.811706Z", "rpms": {"Rocky Linux 9": {"nvras":["fence-agents-0:4.10.0-98.el9_7.12.src.rpm", "fence-agents-aliyun-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-agents-all-0:4.10.0-98.el9_7.12.aarch64.rpm", "fence-agents-all-0:4.10.0-98.el9_7.12.ppc64le.rpm", "fence-agents-all-0:4.10.0-98.el9_7.12.s390x.rpm", "fence-agents-all-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-agents-amt-ws-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-apc-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-apc-snmp-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-aws-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-agents-azure-arm-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-agents-bladecenter-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-brocade-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-cisco-mds-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-cisco-ucs-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-common-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-compute-0:4.10.0-98.el9_7.12.ppc64le.rpm", "fence-agents-compute-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-agents-debuginfo-0:4.10.0-98.el9_7.12.aarch64.rpm", "fence-agents-debuginfo-0:4.10.0-98.el9_7.12.ppc64le.rpm", "fence-agents-debuginfo-0:4.10.0-98.el9_7.12.s390x.rpm", "fence-agents-debuginfo-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-agents-debugsource-0:4.10.0-98.el9_7.12.aarch64.rpm", "fence-agents-debugsource-0:4.10.0-98.el9_7.12.ppc64le.rpm", "fence-agents-debugsource-0:4.10.0-98.el9_7.12.s390x.rpm", "fence-agents-debugsource-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-agents-drac5-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-eaton-snmp-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-emerson-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-eps-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-gce-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-agents-heuristics-ping-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-hpblade-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-ibmblade-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-ibm-powervs-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-ibm-vpc-0:4.10.0-98.el9_7.12.noarch.rpm","fence-agents-ifmib-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-ilo2-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-ilo-moonshot-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-ilo-mp-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-ilo-ssh-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-intelmodular-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-ipdu-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-ipmilan-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-kdump-0:4.10.0-98.el9_7.12.aarch64.rpm", "fence-agents-kdump-0:4.10.0-98.el9_7.12.ppc64le.rpm", "fence-agents-kdump-0:4.10.0-98.el9_7.12.s390x.rpm", "fence-agents-kdump-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-agents-kdump-debuginfo-0:4.10.0-98.el9_7.12.aarch64.rpm", "fence-agents-kdump-debuginfo-0:4.10.0-98.el9_7.12.ppc64le.rpm", "fence-agents-kdump-debuginfo-0:4.10.0-98.el9_7.12.s390x.rpm", "fence-agents-kdump-debuginfo-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-agents-kubevirt-0:4.10.0-98.el9_7.12.aarch64.rpm", "fence-agents-kubevirt-0:4.10.0-98.el9_7.12.ppc64le.rpm", "fence-agents-kubevirt-0:4.10.0-98.el9_7.12.s390x.rpm", "fence-agents-kubevirt-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-agents-kubevirt-debuginfo-0:4.10.0-98.el9_7.12.aarch64.rpm", "fence-agents-kubevirt-debuginfo-0:4.10.0-98.el9_7.12.ppc64le.rpm", "fence-agents-kubevirt-debuginfo-0:4.10.0-98.el9_7.12.s390x.rpm", "fence-agents-kubevirt-debuginfo-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-agents-lpar-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-mpath-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-nutanix-ahv-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-openstack-0:4.10.0-98.el9_7.12.ppc64le.rpm", "fence-agents-openstack-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-agents-redfish-0:4.10.0-98.el9_7.12.aarch64.rpm", "fence-agents-redfish-0:4.10.0-98.el9_7.12.ppc64le.rpm", "fence-agents-redfish-0:4.10.0-98.el9_7.12.s390x.rpm", "fence-agents-redfish-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-agents-rhevm-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-rsa-0:4.10.0-98.el9_7.12.noarch.rpm","fence-agents-rsb-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-sbd-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-scsi-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-virsh-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-vmware-rest-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-vmware-soap-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-wti-0:4.10.0-98.el9_7.12.noarch.rpm", "fence-agents-zvm-0:4.10.0-98.el9_7.12.s390x.rpm", "fence-virt-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-virtd-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-virtd-cpg-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-virtd-cpg-debuginfo-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-virtd-debuginfo-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-virt-debuginfo-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-virtd-libvirt-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-virtd-libvirt-debuginfo-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-virtd-multicast-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-virtd-multicast-debuginfo-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-virtd-serial-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-virtd-serial-debuginfo-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-virtd-tcp-0:4.10.0-98.el9_7.12.x86_64.rpm", "fence-virtd-tcp-debuginfo-0:4.10.0-98.el9_7.12.x86_64.rpm", "ha-cloud-support-0:4.10.0-98.el9_7.12.ppc64le.rpm", "ha-cloud-support-0:4.10.0-98.el9_7.12.x86_64.rpm", "ha-cloud-support-debuginfo-0:4.10.0-98.el9_7.12.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. This advisory covers an important security update for fence-agents on Rocky Linux 9, addressing critical vulnerabilities.. Rocky Linux,Fence Agents,Security Update,Remote Management,Cluster Safety. . Severity: Important. LinuxSecurity.com Team

May 06, 2026 •Important Rocky Linux