INFSA-2025:14750: fence-agents security update
Information about definition
Identificator: INFSA-2025:14750
Type: security
Release date: 2025-09-04 22:16:23 UTC
Information about package
The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster.
Vulnerabilities description
- CVE-2024-47081
A flaw was found in the Requests HTTP library. This vulnerability allows leakage of .netrc credentials to third parties via maliciously crafted URLs that exploit a URL parsing issue.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2024-47081
|
no information | 5.3 | no information |
Updated packages