resource-agents-4.9.0-54.el8_10.16
エラータID: AXSA:2025-10823:08
リリース日:
2025/09/03 Wednesday - 17:19
題名:
resource-agents-4.9.0-54.el8_10.16
影響のあるチャネル:
Asianux Server 8 for x86_64
Severity:
Moderate
Description:
以下項目について対処しました。
[Security Fix]
- python-requests には、URL の解析処理に問題があるため、リモート
の攻撃者により、.netrc に保存された認証情報の漏洩を可能とする
脆弱性が存在します。(CVE-2024-47081)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2024-47081
Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for specific maliciously-crafted URLs. Users should upgrade to version 2.32.4 to receive a fix. For older versions of Requests, use of the .netrc file can be disabled with `trust_env=False` on one's Requests Session.
Requests is a HTTP library. Due to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for specific maliciously-crafted URLs. Users should upgrade to version 2.32.4 to receive a fix. For older versions of Requests, use of the .netrc file can be disabled with `trust_env=False` on one's Requests Session.
追加情報:
N/A
ダウンロード:
SRPMS
- resource-agents-4.9.0-54.el8_10.16.src.rpm
MD5: 3900f36c88f8c2ba1f89777dce704e47
SHA-256: e031fad5447d0ff5208278c0c75d6616638f3489613d7b953c2675522048b1fa
Size: 95.65 MB
Asianux Server 8 for x86_64
- resource-agents-4.9.0-54.el8_10.16.x86_64.rpm
MD5: 8dfaf0752e7a0d56cc9fba5af8a4e594
SHA-256: 3ef3d64fc07e8de0dd2e1543f0682ae4b2f6d93c71038dc48cabebcfa405b71a
Size: 547.83 kB - resource-agents-aliyun-4.9.0-54.el8_10.16.x86_64.rpm
MD5: 1d1cc83b077fc686f95a4d5b7b5fa456
SHA-256: 224a96e0d5e5faae4d52b6bf65aa57d6c6b328c7e48c62ecceb20fb5334209e5
Size: 2.66 MB - resource-agents-gcp-4.9.0-54.el8_10.16.x86_64.rpm
MD5: 4c490550a4630ca514bbd5079efd6061
SHA-256: ef691d11f9d82aad7614c1635c8cf5734e79b2b69a3381d2ce4ef027c6a0e971
Size: 21.81 MB - resource-agents-paf-4.9.0-54.el8_10.16.x86_64.rpm
MD5: 9167476166929ddb9602a2dcefab4ac0
SHA-256: 16e1721e53597482139c61337d9895ed28f79786f25d0282f3ce39afe236f956
Size: 75.93 kB
English