Important: Red Hat Security Advisory: python3.11-setuptools security update

An update for python3.11-setuptools is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

A flaw was found in the packageindex module of pypa/setuptools. Affected versions of this package allow remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to co...

Moderate: Red Hat Security Advisory: resource-agents security update

An update for resource-agents is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

A flaw was found in the packageindex module of pypa/setuptools. Affected versions of this package allow remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to co...

ALSA-2024:6309 Moderate: fence-agents security update

The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster. Security Fixes: urllib3: proxy-authorization request header is not stripped during...

RHEL 8 : resource-agents (RHSA-2024:6311)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:6311 advisory. The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with severa...

Oracle Linux 8 : fence-agents (ELSA-2024-6309)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-6309 advisory. - bundled setuptools: fix CVE-2024-6345 Resolves: RHEL-50223 - bundled urllib3: fix CVE-2024-37891 Resolves: RHEL-43568 Tenable has extracted the...

RHEL 9 : python3.11-setuptools (RHSA-2024:6312)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:6312 advisory. Setuptools is a collection of enhancements to the Python 3 distutils that allow you to more easily build and distribute Python 3 packages, especially...

fence-agents security update

4.2.1-129.4 - bundled setuptools: fix CVE-2024-6345 Resolves: RHEL-50223 4.2.1-129.3 - bundled urllib3: fix CVE-2024-37891 Resolves: RHEL-43568 4.2.1-129.2 - fenceeps: add fenceepsr2 for ePowerSwitch R2 and newer Resolves: RHEL-7734 - bundled jinja2: fix CVE-2024-34064 Resolves: RHEL-35655...

ALSA-2024:6311 Moderate: resource-agents security update

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability HA environment. Security Fixes: urllib3: proxy-authorization request header is not stripped during...

RHEL 8 : fence-agents (RHSA-2024:6309)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:6309 advisory. The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or...

Moderate: resource-agents security update

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability HA environment. Security Fixes: urllib3: proxy-authorization request header is not stripped during...

pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

A flaw was found in the packageindex module of pypa/setuptools. Affected versions of this package allow remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to co...

Important: Red Hat Security Advisory: python39:3.9 security update

An update for the python39:3.9 module is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated...

SUSE: Security Advisory (SUSE-SU-2024:3055-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2024:3054-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python3-setuptools (SUSE-SU-2024:3054-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3054-1 advisory. - CVE-2024-6345: Fixed code execution via download functions in the packageindex module bsc1228105 Tenabl...

OPENSUSE-SU-2024:14294-1 python310-setuptools-72.1.0-1.1 on GA media

These are all security issues fixed in the python310-setuptools-72.1.0-1.1 package on the GA media of openSUSE Tumbleweed...

SUSE-SU-2024:3055-1 Security update for python-setuptools

This update for python-setuptools fixes the following issues: - CVE-2024-6345: Fixed code execution via download functions in the packageindex module bsc1228105...

SUSE-SU-2024:3054-1 Security update for python3-setuptools

This update for python3-setuptools fixes the following issues: - CVE-2024-6345: Fixed code execution via download functions in the packageindex module bsc1228105...