Security News

Cybersecurity news aggregator

🔄
HIGH Updates Red Hat Errata

RHSA-2026:21431: Important: fence-agents security update

cve-2026-1234redhatcve-2026-26007cve-2026-32597
This security update for the fence-agents package addresses two vulnerabilities: a medium-severity (CVSS 6.5) subgroup attack in the cryptography library due to missing validation for SECT curves (CVE-2026-26007), and a high-severity (CVSS 7.5) flaw in PyJWT where it improperly accepts unknown `crit` header extensions (CVE-2026-32597). The cryptography library is affected in versions prior to 46.0.5, and PyJWT is affected in versions prior to 2.12.0. The fix requires applying the Red Hat-provided update for fence-agents on RHEL 9.6 Extended Update Support.
Read Full Article →

Red Hat Product Errata RHSA-2026:21431 - Security Advisory Issued: 2026-05-27 Updated: 2026-05-27 RHSA-2026:21431 - Security Advisory Overview Updated Packages Synopsis Important: fence-agents security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for fence-agents is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster. Security Fix(es): cryptography: cryptography Subgroup Attack Due to Missing Subgroup Validation for SECT Curves (CVE-2026-26007) pyjwt: PyJWT accepts unknown `crit` header extensions (RFC 7515 ?4.1.11 MUST violation) (CVE-2026-32597) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64 Red Hat Enterprise Linux Server - AUS 9.6 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.6 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.6 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.6 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.6 s390x Fixes BZ - 2438762 - CVE-2026-26007 cryptography: cryptography Subgroup Attack Due to Missing Subgroup Validation for SECT Curves BZ - 2447194 - CVE-2026-32597 pyjwt: PyJWT accepts unknown `crit` header extensions (RFC 7515 ?4.1.11 MUST violation) CVEs CVE-2026-26007 CVE-2026-32597 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 SRPM fence-agents-4.10.0-86.el9_6.16.src.rpm SHA-256: e070773e06e64e6822a4fb74b22879a6490c2edb1a112a346f44aae65ad61581 x86_64 fence-agents-aliyun-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: 35f115a956f13386c6bd79dae00f98c99c525316f503cab9d6964e677f2ef73d fence-agents-all-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: d5c795b517f64995518e48fcc8e40e53b87a8ac656bf5cd031da0baf6a8ee8af fence-agents-amt-ws-4.10.0-86.el9_6.16.noarch.rpm SHA-256: e97fafa070cf8e0f367934fbca51d0709eabcf8e1bb98f214ad9a4891ef85acb fence-agents-apc-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 69122f423fc3cacd57db997be70e50f6e61802bfe1298d18ce2e3af4f43aff35 fence-agents-apc-snmp-4.10.0-86.el9_6.16.noarch.rpm SHA-256: a8afe49442f75ca37fc20ebd70c33f5a19e83576bc0e52808a5bb0c255eca8a8 fence-agents-aws-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: c951d6eeba4d33e46300682ac510fc5352142b745ae25da1579cc5f2a116f212 fence-agents-azure-arm-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: b2f2b3809127c266f0eece16d3df1870dcbb6448257c1b0dae3e17596bb0ce64 fence-agents-bladecenter-4.10.0-86.el9_6.16.noarch.rpm SHA-256: ec51236024a6472a0ef204311ce2bf394545f0f4fceb8ce6b6478c592839b073 fence-agents-brocade-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 5e2aa12425e252e9baee8f18e417e1bc068909199a9db19b92461c79cadc51c4 fence-agents-cisco-mds-4.10.0-86.el9_6.16.noarch.rpm SHA-256: f3a295d2420d0e17759f0b02a53bcf91471321227b2d145066a81ab41906de51 fence-agents-cisco-ucs-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 008564056622a51e5f20b199e4c7a5c1d11093c0cb6fa754bbdc487dcf8d393d fence-agents-common-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 3071992918423889f3d4c965fcd2a4877c6e2b203efccc0783bc615dd0e4a68a fence-agents-compute-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: b404001582892c8af4053eb98acf8eddf85a34c437f887d9f519bb5eacf40e44 fence-agents-debuginfo-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: 39affe1ebf65804311c56ec20306dbb5c55c255865a43a979a5457315ee36763 fence-agents-debugsource-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: 27e63b2642fc8838a7becabb858b669160f1cc55744a5247497d127f4a398274 fence-agents-drac5-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 33261fc901b4e0c0ccc25e682868694a802639610b5817b1dfd92ad3b417384a fence-agents-eaton-snmp-4.10.0-86.el9_6.16.noarch.rpm SHA-256: f895ae36fdb274c4d0e9a713a11181c2c6c89a78c22b14d7f81b066beaad6dfd fence-agents-emerson-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 655d728e2108b488176e2fc692493bc3ce1c8a9cc9291d02db12bda4fc7eac37 fence-agents-eps-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 888a83bd0413e003281646a45069adbca404aaca16c0391e8cb0d33d228a89fe fence-agents-gce-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: 54b13912d113c31c4362bc4db19b1fcf2f7f8be915b0c6879255ea864ee2ed68 fence-agents-heuristics-ping-4.10.0-86.el9_6.16.noarch.rpm SHA-256: b9ed6d860036c0c3313fe966135cf741817fa912dd4613cd2c2dd68fe071798f fence-agents-hpblade-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 71c190817560deb52fc5cf60f0837c7eaf75b5da55a322bedae3c11a26223f4e fence-agents-ibm-powervs-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 5c95b0ce96221447c2a12cf433696fda65217bb023754d8a6001fcf07dbf51b2 fence-agents-ibm-vpc-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 59c4301a44c14f13bb84e98114c2d9e03ceb9bb34aba7d4a1db8eb9e7044b53d fence-agents-ibmblade-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 7cb8e2649642ec3e636b951547019c17097c4d1533bcb39b32151860557a4e59 fence-agents-ifmib-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 67be86313e6b55baeb58cdd8a9ec59ebace4c130ab3f2b4d83f3af9e2156d175 fence-agents-ilo-moonshot-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 016cd3ccc3d06b947391d9304c3b3357e6f6915c6d8039817a43072752633f1b fence-agents-ilo-mp-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 5446f83a477351c2e16883d664e41de2e7bc7a54803c69c999781ac28a01d521 fence-agents-ilo-ssh-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 489efe1e6e956a3e8e29c88182afa4c846b809a40faff1a98e050ba2a8e65e5c fence-agents-ilo2-4.10.0-86.el9_6.16.noarch.rpm SHA-256: dd23294010d98b1c42db9efd94221e61b10e43ed4d78d6fa5b52b8057c9f1b5c fence-agents-intelmodular-4.10.0-86.el9_6.16.noarch.rpm SHA-256: dc55e6f3e29014155bea4cc7c1aeed0455b1ed81779651d4e85da35720b649fd fence-agents-ipdu-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 9b9435671b6123a202ee89c927487d64089faf7bf6c7bbac87cb7011c3280d2e fence-agents-ipmilan-4.10.0-86.el9_6.16.noarch.rpm SHA-256: c585d9a091bde40ad264bf96c5971248e1510d135f70e20f3cf6cf2956b5c9ad fence-agents-kdump-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: 247445647d523ef5c68bf624300999a7a5fd6fdc5ef972a9b928c30b1a97d026 fence-agents-kdump-debuginfo-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: 192cc52e20eb0099481cd53d85cec5db6e45b10c655f692efdc67e8eb05fae64 fence-agents-kubevirt-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: 03269bdfbf8a20100c44cdd3919344ebb11c03b4c924a687de70c05733945495 fence-agents-kubevirt-debuginfo-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: cb22f678f9d14eca45047bb58473af747d599c5b6c6b820fbe723e1b26755783 fence-agents-lpar-4.10.0-86.el9_6.16.noarch.rpm SHA-256: bd90d53969bb13484d34c8c2c9faf37bfad64ad64d391891e1bf7f78fbb28d3b fence-agents-mpath-4.10.0-86.el9_6.16.noarch.rpm SHA-256: a91c45802819e3f0134780f57acb54ec97db3a4c6c7b042be28c23f37821a3bd fence-agents-nutanix-ahv-4.10.0-86.el9_6.16.noarch.rpm SHA-256: f4219fdcc245e5f154ea9a58f9a77b064581e667d8e20d550447e45a3e7dbea9 fence-agents-openstack-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: ef24dbc86840e54d66790459cd514161003c118aeac907528d9adffd932880e3 fence-agents-redfish-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: 180652e20400c1e68f03f0f6329933b13cb019883a4cc90cf7522ab6d374c3c0 fence-agents-rhevm-4.10.0-86.el9_6.16.noarch.rpm SHA-256: e2c2919c758d095d2d9837e7bdadd713a48e1287476c0bbd4ab9827604c4373a fence-agents-rsa-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 9480909d9e766dbc6c5894a41b98bc94c2b7f2b0af76fca169c731f83a54dd44 fence-agents-rsb-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 6f087196aa7703b86cd0731d688c3a18303f8db751dd70e98e523fad8200d6fc fence-agents-sbd-4.10.0-86.el9_6.16.noarch.rpm SHA-256: e59df08c25e9f7b776b68ff01c75415908ec87314ea1c8185d51196d7c2bed6b fence-agents-scsi-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 1fc40090d6beb73bce0f022de72769d08983990d86d674ca29e8be8a101b7b1c fence-agents-virsh-4.10.0-86.el9_6.16.noarch.rpm SHA-256: cef7a951b807b94b20dec0d6be257377a4a5d27e22aa5f930860002bf3708a40 fence-agents-vmware-rest-4.10.0-86.el9_6.16.noarch.rpm SHA-256: f2a330b402683bb0584a1be0f1925ac4f682fa904ad57fb94b12cc66a6841077 fence-agents-vmware-soap-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 29a7872f48e224f789a839e963a32d8dcb5c6c4cce4ddf16f3a2d20bd44d34a1 fence-agents-wti-4.10.0-86.el9_6.16.noarch.rpm SHA-256: 20ffca669463b64d3c49df3a6154abda85ec09556bd07244111091699ca43d13 fence-virt-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: b2e5abd67042d6811cf68fd9b3920b3d30e3e417041beec13417985c5f2d32ac fence-virt-debuginfo-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: 956baf1bb475e6a0342f99b309db9128e723f5205d020213951cd2bdbb7a157b fence-virtd-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: ada132b2a83ef83dd514663f2a67f91fce848aaefbde5ecbd939f75c67b70cd0 fence-virtd-cpg-4.10.0-86.el9_6.16.x86_64.rpm SHA-256: 1

Related Articles

HIGH RHSA-2026:12176: Important: fence-agents security update Red Hat Errata HIGH RHSA-2026:13512: Important: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update Red Hat Errata INFO RHSA-2026:13672: Important: fence-agents security update Red Hat Errata INFO RHSA-2026:19355: Important: fence-agents security update Red Hat Errata
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn