Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2023-7753

Опубликовано: 18 дек. 2023
Источник: oracle-oval
Платформа: Oracle Linux 9

Описание

ELSA-2023-7753: fence-agents security update (MODERATE)

[4.10.0-55.2]

  • python-certifi: Removal of e-Tugra root certificate (CVE-2023-37920)
  • python-urllib3: Cookie request header isn't stripped during cross-origin redirects (CVE-2023-43804)

Обновленные пакеты

Oracle Linux 9

Oracle Linux aarch64

fence-agents-all

4.10.0-55.el9_3.2

fence-agents-amt-ws

4.10.0-55.el9_3.2

fence-agents-apc

4.10.0-55.el9_3.2

fence-agents-apc-snmp

4.10.0-55.el9_3.2

fence-agents-bladecenter

4.10.0-55.el9_3.2

fence-agents-brocade

4.10.0-55.el9_3.2

fence-agents-cisco-mds

4.10.0-55.el9_3.2

fence-agents-cisco-ucs

4.10.0-55.el9_3.2

fence-agents-common

4.10.0-55.el9_3.2

fence-agents-drac5

4.10.0-55.el9_3.2

fence-agents-eaton-snmp

4.10.0-55.el9_3.2

fence-agents-emerson

4.10.0-55.el9_3.2

fence-agents-eps

4.10.0-55.el9_3.2

fence-agents-heuristics-ping

4.10.0-55.el9_3.2

fence-agents-hpblade

4.10.0-55.el9_3.2

fence-agents-ibm-powervs

4.10.0-55.el9_3.2

fence-agents-ibm-vpc

4.10.0-55.el9_3.2

fence-agents-ibmblade

4.10.0-55.el9_3.2

fence-agents-ifmib

4.10.0-55.el9_3.2

fence-agents-ilo-moonshot

4.10.0-55.el9_3.2

fence-agents-ilo-mp

4.10.0-55.el9_3.2

fence-agents-ilo-ssh

4.10.0-55.el9_3.2

fence-agents-ilo2

4.10.0-55.el9_3.2

fence-agents-intelmodular

4.10.0-55.el9_3.2

fence-agents-ipdu

4.10.0-55.el9_3.2

fence-agents-ipmilan

4.10.0-55.el9_3.2

fence-agents-kdump

4.10.0-55.el9_3.2

fence-agents-kubevirt

4.10.0-55.el9_3.2

fence-agents-lpar

4.10.0-55.el9_3.2

fence-agents-mpath

4.10.0-55.el9_3.2

fence-agents-redfish

4.10.0-55.el9_3.2

fence-agents-rhevm

4.10.0-55.el9_3.2

fence-agents-rsa

4.10.0-55.el9_3.2

fence-agents-rsb

4.10.0-55.el9_3.2

fence-agents-sbd

4.10.0-55.el9_3.2

fence-agents-scsi

4.10.0-55.el9_3.2

fence-agents-virsh

4.10.0-55.el9_3.2

fence-agents-vmware-rest

4.10.0-55.el9_3.2

fence-agents-vmware-soap

4.10.0-55.el9_3.2

fence-agents-wti

4.10.0-55.el9_3.2

Oracle Linux x86_64

fence-agents-all

4.10.0-55.el9_3.2

fence-agents-amt-ws

4.10.0-55.el9_3.2

fence-agents-apc

4.10.0-55.el9_3.2

fence-agents-apc-snmp

4.10.0-55.el9_3.2

fence-agents-bladecenter

4.10.0-55.el9_3.2

fence-agents-brocade

4.10.0-55.el9_3.2

fence-agents-cisco-mds

4.10.0-55.el9_3.2

fence-agents-cisco-ucs

4.10.0-55.el9_3.2

fence-agents-common

4.10.0-55.el9_3.2

fence-agents-compute

4.10.0-55.el9_3.2

fence-agents-drac5

4.10.0-55.el9_3.2

fence-agents-eaton-snmp

4.10.0-55.el9_3.2

fence-agents-emerson

4.10.0-55.el9_3.2

fence-agents-eps

4.10.0-55.el9_3.2

fence-agents-heuristics-ping

4.10.0-55.el9_3.2

fence-agents-hpblade

4.10.0-55.el9_3.2

fence-agents-ibm-powervs

4.10.0-55.el9_3.2

fence-agents-ibm-vpc

4.10.0-55.el9_3.2

fence-agents-ibmblade

4.10.0-55.el9_3.2

fence-agents-ifmib

4.10.0-55.el9_3.2

fence-agents-ilo-moonshot

4.10.0-55.el9_3.2

fence-agents-ilo-mp

4.10.0-55.el9_3.2

fence-agents-ilo-ssh

4.10.0-55.el9_3.2

fence-agents-ilo2

4.10.0-55.el9_3.2

fence-agents-intelmodular

4.10.0-55.el9_3.2

fence-agents-ipdu

4.10.0-55.el9_3.2

fence-agents-ipmilan

4.10.0-55.el9_3.2

fence-agents-kdump

4.10.0-55.el9_3.2

fence-agents-kubevirt

4.10.0-55.el9_3.2

fence-agents-lpar

4.10.0-55.el9_3.2

fence-agents-mpath

4.10.0-55.el9_3.2

fence-agents-redfish

4.10.0-55.el9_3.2

fence-agents-rhevm

4.10.0-55.el9_3.2

fence-agents-rsa

4.10.0-55.el9_3.2

fence-agents-rsb

4.10.0-55.el9_3.2

fence-agents-sbd

4.10.0-55.el9_3.2

fence-agents-scsi

4.10.0-55.el9_3.2

fence-agents-virsh

4.10.0-55.el9_3.2

fence-agents-vmware-rest

4.10.0-55.el9_3.2

fence-agents-vmware-soap

4.10.0-55.el9_3.2

fence-agents-wti

4.10.0-55.el9_3.2

fence-virt

4.10.0-55.el9_3.2

fence-virtd

4.10.0-55.el9_3.2

fence-virtd-cpg

4.10.0-55.el9_3.2

fence-virtd-libvirt

4.10.0-55.el9_3.2

fence-virtd-multicast

4.10.0-55.el9_3.2

fence-virtd-serial

4.10.0-55.el9_3.2

fence-virtd-tcp

4.10.0-55.el9_3.2

Связанные CVE

CVE-2023-43804
CVE-2023-37920

Ссылки на источники

Связанные уязвимости

oracle-oval логотип

ELSA-2024-0133

oracle-oval
больше 1 года назад

ELSA-2024-0133: fence-agents security update (MODERATE)

ubuntu логотип

CVE-2023-37920

CVSS3: 7.5
ubuntu
почти 2 года назад

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi prior to version 2023.07.22 recognizes "e-Tugra" root certificates. e-Tugra's root certificates were subject to an investigation prompted by reporting of security issues in their systems. Certifi 2023.07.22 removes root certificates from "e-Tugra" from the root store.

redhat логотип

CVE-2023-37920

CVSS3: 9.1
redhat
почти 2 года назад

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi prior to version 2023.07.22 recognizes "e-Tugra" root certificates. e-Tugra's root certificates were subject to an investigation prompted by reporting of security issues in their systems. Certifi 2023.07.22 removes root certificates from "e-Tugra" from the root store.

nvd логотип

CVE-2023-37920

CVSS3: 7.5
nvd
почти 2 года назад

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi prior to version 2023.07.22 recognizes "e-Tugra" root certificates. e-Tugra's root certificates were subject to an investigation prompted by reporting of security issues in their systems. Certifi 2023.07.22 removes root certificates from "e-Tugra" from the root store.

msrc логотип

CVE-2023-37920

CVSS3: 9.8
msrc
12 месяцев назад

Описание отсутствует

Уязвимость ELSA-2023-7753