Issued:: 2026-01-26
Updated:: 2026-01-26

RHSA-2026:1241 - Security Advisory

Overview
Updated Packages

Synopsis

Important: resource-agents security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for resource-agents is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment.

Security Fix(es):

urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion (CVE-2025-66418)
urllib3: urllib3 Streaming API improperly handles highly compressed data (CVE-2025-66471)
urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API) (CVE-2026-21441)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux High Availability for x86_64 8 x86_64
Red Hat Enterprise Linux High Availability for ARM 64 8 aarch64
Red Hat Enterprise Linux Resilient Storage for x86_64 8 x86_64
Red Hat Enterprise Linux Resilient Storage for IBM z Systems 8 s390x
Red Hat Enterprise Linux High Availability for IBM z Systems 8 s390x
Red Hat Enterprise Linux Resilient Storage for Power, little endian 8 ppc64le
Red Hat Enterprise Linux High Availability for Power, little endian 8 ppc64le
Red Hat Enterprise Linux High Availability for ARM 64 - Extended Life Cycle 8.10 aarch64
Red Hat Enterprise Linux High Availability for Power, little endian - Extended Life Cycle 8.10 ppc64le
Red Hat Enterprise Linux High Availability for IBM z Systems - Extended Life Cycle 8.10 s390x
Red Hat Enterprise Linux High Availability for x86_64 - Extended Life Cycle 8.10 x86_64
Red Hat Enterprise Linux Resilient Storage for Power, little endian - Extended Life Cycle 8.10 ppc64le
Red Hat Enterprise Linux Resilient Storage for IBM z Systems - Extended Life Cycle 8.10 s390x
Red Hat Enterprise Linux Resilient Storage for x86_64 - Extended Life Cycle 8.10 x86_64

Fixes

BZ - 2419455 - CVE-2025-66418 urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion
BZ - 2419467 - CVE-2025-66471 urllib3: urllib3 Streaming API improperly handles highly compressed data
BZ - 2427726 - CVE-2026-21441 urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API)

CVEs

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux High Availability for x86_64 8

SRPM
resource-agents-4.9.0-54.el8_10.27.src.rpm	SHA-256: fbde344ae32bb1aad85a90d533e27f7bf4427ff216ce5aff8e8ecd2f3b452a32
x86_64
resource-agents-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: 9e84ed7e13a78e84af5c991ede8609a89295ad56358f822d0d3e023644a6b924
resource-agents-aliyun-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: b4b7414e0baee94b52e379e7bef91928b376d9b8685fa5d19033cea35fed7ab2
resource-agents-aliyun-debuginfo-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: b47857d60e103a95fbe558d4a3f00d23501d1133fe7a8723a72e8cef52e7355c
resource-agents-debuginfo-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: 38408af8903d7091563a6ab1c983e84e46328e6d9c0d74270b24b383fb60d7df
resource-agents-debugsource-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: 477fd6ff42c594623f70285d61f41c092cd729e881eb71f611b106148beaf0c6
resource-agents-gcp-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: e367d9b3aeecdd195880ee19635b58bff9df3edccd5e75c0f7dd01e70a511ea7
resource-agents-paf-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: 133dd5657c3add052b1fbbd23c5f6a9dcca3b6098b9b658a07ca0a73d9aaf5db

Red Hat Enterprise Linux High Availability for ARM 64 8

SRPM
resource-agents-4.9.0-54.el8_10.27.src.rpm	SHA-256: fbde344ae32bb1aad85a90d533e27f7bf4427ff216ce5aff8e8ecd2f3b452a32
aarch64
resource-agents-4.9.0-54.el8_10.27.aarch64.rpm	SHA-256: 440abdf099a8dc4920096cdba7c14121c0e13dab44a71d1bd6fcb620dc76cc87
resource-agents-debuginfo-4.9.0-54.el8_10.27.aarch64.rpm	SHA-256: 1791bd3c96e2bad5481e696b2d9e44c68b28621dccffaa7ec28b49f5dbbb6f11
resource-agents-debugsource-4.9.0-54.el8_10.27.aarch64.rpm	SHA-256: 08e04a14b1ff7ec19283b23048d4bd400ecbc1d367cea31c04a78c092a73d10c
resource-agents-paf-4.9.0-54.el8_10.27.aarch64.rpm	SHA-256: 29716ba46a57690829edfca52ef10448e26efe17b128d002bcb70720243eb3cc

Red Hat Enterprise Linux Resilient Storage for x86_64 8

SRPM
resource-agents-4.9.0-54.el8_10.27.src.rpm	SHA-256: fbde344ae32bb1aad85a90d533e27f7bf4427ff216ce5aff8e8ecd2f3b452a32
x86_64
resource-agents-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: 9e84ed7e13a78e84af5c991ede8609a89295ad56358f822d0d3e023644a6b924
resource-agents-aliyun-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: b4b7414e0baee94b52e379e7bef91928b376d9b8685fa5d19033cea35fed7ab2
resource-agents-aliyun-debuginfo-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: b47857d60e103a95fbe558d4a3f00d23501d1133fe7a8723a72e8cef52e7355c
resource-agents-debuginfo-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: 38408af8903d7091563a6ab1c983e84e46328e6d9c0d74270b24b383fb60d7df
resource-agents-debugsource-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: 477fd6ff42c594623f70285d61f41c092cd729e881eb71f611b106148beaf0c6
resource-agents-gcp-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: e367d9b3aeecdd195880ee19635b58bff9df3edccd5e75c0f7dd01e70a511ea7
resource-agents-paf-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: 133dd5657c3add052b1fbbd23c5f6a9dcca3b6098b9b658a07ca0a73d9aaf5db

Red Hat Enterprise Linux Resilient Storage for IBM z Systems 8

SRPM
resource-agents-4.9.0-54.el8_10.27.src.rpm	SHA-256: fbde344ae32bb1aad85a90d533e27f7bf4427ff216ce5aff8e8ecd2f3b452a32
s390x
resource-agents-4.9.0-54.el8_10.27.s390x.rpm	SHA-256: 3ce4d9e8536014ca295419c6f2a30744a4ab1e7bac6768338cb09fd56200e098
resource-agents-debuginfo-4.9.0-54.el8_10.27.s390x.rpm	SHA-256: b5e50465e291424b00b20fc3d077838cbecd27c0941dfc846316a22a240ed495
resource-agents-debugsource-4.9.0-54.el8_10.27.s390x.rpm	SHA-256: bc082a55ca6509785a3197686928c672f98c76d43f2abf5908f1cbd5305cd317
resource-agents-paf-4.9.0-54.el8_10.27.s390x.rpm	SHA-256: 0d55f16232a767a0d0b0253d85fbca742bdc5d96128a76bd975d52f7edf5da66

Red Hat Enterprise Linux High Availability for IBM z Systems 8

SRPM
resource-agents-4.9.0-54.el8_10.27.src.rpm	SHA-256: fbde344ae32bb1aad85a90d533e27f7bf4427ff216ce5aff8e8ecd2f3b452a32
s390x
resource-agents-4.9.0-54.el8_10.27.s390x.rpm	SHA-256: 3ce4d9e8536014ca295419c6f2a30744a4ab1e7bac6768338cb09fd56200e098
resource-agents-debuginfo-4.9.0-54.el8_10.27.s390x.rpm	SHA-256: b5e50465e291424b00b20fc3d077838cbecd27c0941dfc846316a22a240ed495
resource-agents-debugsource-4.9.0-54.el8_10.27.s390x.rpm	SHA-256: bc082a55ca6509785a3197686928c672f98c76d43f2abf5908f1cbd5305cd317
resource-agents-paf-4.9.0-54.el8_10.27.s390x.rpm	SHA-256: 0d55f16232a767a0d0b0253d85fbca742bdc5d96128a76bd975d52f7edf5da66

Red Hat Enterprise Linux Resilient Storage for Power, little endian 8

SRPM
resource-agents-4.9.0-54.el8_10.27.src.rpm	SHA-256: fbde344ae32bb1aad85a90d533e27f7bf4427ff216ce5aff8e8ecd2f3b452a32
ppc64le
resource-agents-4.9.0-54.el8_10.27.ppc64le.rpm	SHA-256: 243ec84eb124aa71e3a93c5d91125838131d4faabb5b91848755980b0c84fbbe
resource-agents-debuginfo-4.9.0-54.el8_10.27.ppc64le.rpm	SHA-256: 32c312bdc1086b09cc1c4b6c284c47fefb0caced3a9fcfa9d06bee871224fab5
resource-agents-debugsource-4.9.0-54.el8_10.27.ppc64le.rpm	SHA-256: 83b86ec492afe708fcff7ace47e3b1ab94d4d12b13da62d6dbf724c9d78ca826
resource-agents-paf-4.9.0-54.el8_10.27.ppc64le.rpm	SHA-256: b469fb46b228078edc52956d1d0b7a76fb40f1333a4d050bbd8a9173dee6c3b9

Red Hat Enterprise Linux High Availability for Power, little endian 8

SRPM
resource-agents-4.9.0-54.el8_10.27.src.rpm	SHA-256: fbde344ae32bb1aad85a90d533e27f7bf4427ff216ce5aff8e8ecd2f3b452a32
ppc64le
resource-agents-4.9.0-54.el8_10.27.ppc64le.rpm	SHA-256: 243ec84eb124aa71e3a93c5d91125838131d4faabb5b91848755980b0c84fbbe
resource-agents-debuginfo-4.9.0-54.el8_10.27.ppc64le.rpm	SHA-256: 32c312bdc1086b09cc1c4b6c284c47fefb0caced3a9fcfa9d06bee871224fab5
resource-agents-debugsource-4.9.0-54.el8_10.27.ppc64le.rpm	SHA-256: 83b86ec492afe708fcff7ace47e3b1ab94d4d12b13da62d6dbf724c9d78ca826
resource-agents-paf-4.9.0-54.el8_10.27.ppc64le.rpm	SHA-256: b469fb46b228078edc52956d1d0b7a76fb40f1333a4d050bbd8a9173dee6c3b9

Red Hat Enterprise Linux High Availability for ARM 64 - Extended Life Cycle 8.10

SRPM
resource-agents-4.9.0-54.el8_10.27.src.rpm	SHA-256: fbde344ae32bb1aad85a90d533e27f7bf4427ff216ce5aff8e8ecd2f3b452a32
aarch64
resource-agents-4.9.0-54.el8_10.27.aarch64.rpm	SHA-256: 440abdf099a8dc4920096cdba7c14121c0e13dab44a71d1bd6fcb620dc76cc87
resource-agents-debuginfo-4.9.0-54.el8_10.27.aarch64.rpm	SHA-256: 1791bd3c96e2bad5481e696b2d9e44c68b28621dccffaa7ec28b49f5dbbb6f11
resource-agents-debugsource-4.9.0-54.el8_10.27.aarch64.rpm	SHA-256: 08e04a14b1ff7ec19283b23048d4bd400ecbc1d367cea31c04a78c092a73d10c
resource-agents-paf-4.9.0-54.el8_10.27.aarch64.rpm	SHA-256: 29716ba46a57690829edfca52ef10448e26efe17b128d002bcb70720243eb3cc

Red Hat Enterprise Linux High Availability for Power, little endian - Extended Life Cycle 8.10

SRPM
resource-agents-4.9.0-54.el8_10.27.src.rpm	SHA-256: fbde344ae32bb1aad85a90d533e27f7bf4427ff216ce5aff8e8ecd2f3b452a32
ppc64le
resource-agents-4.9.0-54.el8_10.27.ppc64le.rpm	SHA-256: 243ec84eb124aa71e3a93c5d91125838131d4faabb5b91848755980b0c84fbbe
resource-agents-debuginfo-4.9.0-54.el8_10.27.ppc64le.rpm	SHA-256: 32c312bdc1086b09cc1c4b6c284c47fefb0caced3a9fcfa9d06bee871224fab5
resource-agents-debugsource-4.9.0-54.el8_10.27.ppc64le.rpm	SHA-256: 83b86ec492afe708fcff7ace47e3b1ab94d4d12b13da62d6dbf724c9d78ca826
resource-agents-paf-4.9.0-54.el8_10.27.ppc64le.rpm	SHA-256: b469fb46b228078edc52956d1d0b7a76fb40f1333a4d050bbd8a9173dee6c3b9

Red Hat Enterprise Linux High Availability for IBM z Systems - Extended Life Cycle 8.10

SRPM
resource-agents-4.9.0-54.el8_10.27.src.rpm	SHA-256: fbde344ae32bb1aad85a90d533e27f7bf4427ff216ce5aff8e8ecd2f3b452a32
s390x
resource-agents-4.9.0-54.el8_10.27.s390x.rpm	SHA-256: 3ce4d9e8536014ca295419c6f2a30744a4ab1e7bac6768338cb09fd56200e098
resource-agents-debuginfo-4.9.0-54.el8_10.27.s390x.rpm	SHA-256: b5e50465e291424b00b20fc3d077838cbecd27c0941dfc846316a22a240ed495
resource-agents-debugsource-4.9.0-54.el8_10.27.s390x.rpm	SHA-256: bc082a55ca6509785a3197686928c672f98c76d43f2abf5908f1cbd5305cd317
resource-agents-paf-4.9.0-54.el8_10.27.s390x.rpm	SHA-256: 0d55f16232a767a0d0b0253d85fbca742bdc5d96128a76bd975d52f7edf5da66

Red Hat Enterprise Linux High Availability for x86_64 - Extended Life Cycle 8.10

SRPM
resource-agents-4.9.0-54.el8_10.27.src.rpm	SHA-256: fbde344ae32bb1aad85a90d533e27f7bf4427ff216ce5aff8e8ecd2f3b452a32
x86_64
resource-agents-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: 9e84ed7e13a78e84af5c991ede8609a89295ad56358f822d0d3e023644a6b924
resource-agents-aliyun-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: b4b7414e0baee94b52e379e7bef91928b376d9b8685fa5d19033cea35fed7ab2
resource-agents-aliyun-debuginfo-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: b47857d60e103a95fbe558d4a3f00d23501d1133fe7a8723a72e8cef52e7355c
resource-agents-debuginfo-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: 38408af8903d7091563a6ab1c983e84e46328e6d9c0d74270b24b383fb60d7df
resource-agents-debugsource-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: 477fd6ff42c594623f70285d61f41c092cd729e881eb71f611b106148beaf0c6
resource-agents-gcp-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: e367d9b3aeecdd195880ee19635b58bff9df3edccd5e75c0f7dd01e70a511ea7
resource-agents-paf-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: 133dd5657c3add052b1fbbd23c5f6a9dcca3b6098b9b658a07ca0a73d9aaf5db

Red Hat Enterprise Linux Resilient Storage for Power, little endian - Extended Life Cycle 8.10

SRPM
resource-agents-4.9.0-54.el8_10.27.src.rpm	SHA-256: fbde344ae32bb1aad85a90d533e27f7bf4427ff216ce5aff8e8ecd2f3b452a32
ppc64le
resource-agents-4.9.0-54.el8_10.27.ppc64le.rpm	SHA-256: 243ec84eb124aa71e3a93c5d91125838131d4faabb5b91848755980b0c84fbbe
resource-agents-debuginfo-4.9.0-54.el8_10.27.ppc64le.rpm	SHA-256: 32c312bdc1086b09cc1c4b6c284c47fefb0caced3a9fcfa9d06bee871224fab5
resource-agents-debugsource-4.9.0-54.el8_10.27.ppc64le.rpm	SHA-256: 83b86ec492afe708fcff7ace47e3b1ab94d4d12b13da62d6dbf724c9d78ca826
resource-agents-paf-4.9.0-54.el8_10.27.ppc64le.rpm	SHA-256: b469fb46b228078edc52956d1d0b7a76fb40f1333a4d050bbd8a9173dee6c3b9

Red Hat Enterprise Linux Resilient Storage for IBM z Systems - Extended Life Cycle 8.10

SRPM
resource-agents-4.9.0-54.el8_10.27.src.rpm	SHA-256: fbde344ae32bb1aad85a90d533e27f7bf4427ff216ce5aff8e8ecd2f3b452a32
s390x
resource-agents-4.9.0-54.el8_10.27.s390x.rpm	SHA-256: 3ce4d9e8536014ca295419c6f2a30744a4ab1e7bac6768338cb09fd56200e098
resource-agents-debuginfo-4.9.0-54.el8_10.27.s390x.rpm	SHA-256: b5e50465e291424b00b20fc3d077838cbecd27c0941dfc846316a22a240ed495
resource-agents-debugsource-4.9.0-54.el8_10.27.s390x.rpm	SHA-256: bc082a55ca6509785a3197686928c672f98c76d43f2abf5908f1cbd5305cd317
resource-agents-paf-4.9.0-54.el8_10.27.s390x.rpm	SHA-256: 0d55f16232a767a0d0b0253d85fbca742bdc5d96128a76bd975d52f7edf5da66

Red Hat Enterprise Linux Resilient Storage for x86_64 - Extended Life Cycle 8.10

SRPM
resource-agents-4.9.0-54.el8_10.27.src.rpm	SHA-256: fbde344ae32bb1aad85a90d533e27f7bf4427ff216ce5aff8e8ecd2f3b452a32
x86_64
resource-agents-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: 9e84ed7e13a78e84af5c991ede8609a89295ad56358f822d0d3e023644a6b924
resource-agents-aliyun-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: b4b7414e0baee94b52e379e7bef91928b376d9b8685fa5d19033cea35fed7ab2
resource-agents-aliyun-debuginfo-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: b47857d60e103a95fbe558d4a3f00d23501d1133fe7a8723a72e8cef52e7355c
resource-agents-debuginfo-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: 38408af8903d7091563a6ab1c983e84e46328e6d9c0d74270b24b383fb60d7df
resource-agents-debugsource-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: 477fd6ff42c594623f70285d61f41c092cd729e881eb71f611b106148beaf0c6
resource-agents-gcp-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: e367d9b3aeecdd195880ee19635b58bff9df3edccd5e75c0f7dd01e70a511ea7
resource-agents-paf-4.9.0-54.el8_10.27.x86_64.rpm	SHA-256: 133dd5657c3add052b1fbbd23c5f6a9dcca3b6098b9b658a07ca0a73d9aaf5db

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation