{"schema_version":"1.7.2","id":"OESA-2024-2146","modified":"2024-09-20T11:09:09Z","published":"2024-09-20T11:09:09Z","upstream":["CVE-2023-52323"],"summary":"fence-agents security update","details":"A collection of executables to handle isolation (\u0026quot;fencing\u0026quot;) of possibly misbehaving hosts by the means of remote power management, blocking network, storage, or similar. They operate through a unified interface (calling conventions) devised for the original Red Hat clustering solution.\r\n\r\nSecurity Fix(es):\r\n\r\nPyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack.(CVE-2023-52323)","affected":[{"package":{"ecosystem":"openEuler:20.03-LTS-SP4","name":"fence-agents","purl":"pkg:rpm/openEuler/fence-agents\u0026distro=openEuler-20.03-LTS-SP4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.2.1-33.oe2003sp4"}]}],"ecosystem_specific":{"aarch64":["fence-agents-all-4.2.1-33.oe2003sp4.aarch64.rpm","fence-agents-debuginfo-4.2.1-33.oe2003sp4.aarch64.rpm","fence-agents-debugsource-4.2.1-33.oe2003sp4.aarch64.rpm","fence-agents-kdump-4.2.1-33.oe2003sp4.aarch64.rpm","fence-agents-redfish-4.2.1-33.oe2003sp4.aarch64.rpm"],"noarch":["fence-agents-amt-ws-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-apc-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-apc-snmp-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-aws-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-bladecenter-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-brocade-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-cisco-mds-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-cisco-ucs-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-common-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-compute-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-drac5-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-eaton-snmp-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-emerson-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-eps-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-gce-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-heuristics-ping-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-hpblade-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-ibmblade-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-ifmib-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-ilo-moonshot-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-ilo-mp-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-ilo-ssh-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-ilo2-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-intelmodular-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-ipdu-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-ipmilan-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-mpath-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-rhevm-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-rsa-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-rsb-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-sbd-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-scsi-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-virsh-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-vmware-rest-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-vmware-soap-4.2.1-33.oe2003sp4.noarch.rpm","fence-agents-wti-4.2.1-33.oe2003sp4.noarch.rpm"],"src":["fence-agents-4.2.1-33.oe2003sp4.src.rpm"],"x86_64":["fence-agents-aliyun-4.2.1-33.oe2003sp4.x86_64.rpm","fence-agents-all-4.2.1-33.oe2003sp4.x86_64.rpm","fence-agents-debuginfo-4.2.1-33.oe2003sp4.x86_64.rpm","fence-agents-debugsource-4.2.1-33.oe2003sp4.x86_64.rpm","fence-agents-kdump-4.2.1-33.oe2003sp4.x86_64.rpm","fence-agents-redfish-4.2.1-33.oe2003sp4.x86_64.rpm"]}}],"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-2146"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-52323"}],"database_specific":{"severity":"Medium"}}