Red Hat Product Errata RHSA-2026:13902 - Security Advisory
Issued:
2026-05-06
Updated:
2026-05-06

RHSA-2026:13902 - Security Advisory

Synopsis

Important: resource-agents security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for resource-agents is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment.

Security Fix(es):

  • pyasn1: pyasn1 Vulnerable to Denial of Service via Unbounded Recursion (CVE-2026-30922)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux High Availability for x86_64 8 x86_64
  • Red Hat Enterprise Linux High Availability for ARM 64 8 aarch64
  • Red Hat Enterprise Linux Resilient Storage for x86_64 8 x86_64
  • Red Hat Enterprise Linux Resilient Storage for IBM z Systems 8 s390x
  • Red Hat Enterprise Linux High Availability for IBM z Systems 8 s390x
  • Red Hat Enterprise Linux Resilient Storage for Power, little endian 8 ppc64le
  • Red Hat Enterprise Linux High Availability for Power, little endian 8 ppc64le
  • Red Hat Enterprise Linux High Availability for ARM 64 - Extended Life Cycle 8.10 aarch64
  • Red Hat Enterprise Linux High Availability for Power, little endian - Extended Life Cycle 8.10 ppc64le
  • Red Hat Enterprise Linux High Availability for IBM z Systems - Extended Life Cycle 8.10 s390x
  • Red Hat Enterprise Linux High Availability for x86_64 - Extended Life Cycle 8.10 x86_64
  • Red Hat Enterprise Linux Resilient Storage for Power, little endian - Extended Life Cycle 8.10 ppc64le
  • Red Hat Enterprise Linux Resilient Storage for IBM z Systems - Extended Life Cycle 8.10 s390x
  • Red Hat Enterprise Linux Resilient Storage for x86_64 - Extended Life Cycle 8.10 x86_64

Fixes

  • BZ - 2448553 - CVE-2026-30922 pyasn1: pyasn1 Vulnerable to Denial of Service via Unbounded Recursion

Red Hat Enterprise Linux High Availability for x86_64 8

SRPM
resource-agents-4.9.0-54.el8_10.33.src.rpm SHA-256: 30aa1a37fa5ef5067ee02fde0e5d6ffe6bc19035a7e539c2b28eddcbfc0361c0
x86_64
resource-agents-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: 673345e8a9a35ca2a7c9afdcfe0bef9441f18a10700910a674b72d60fc5ab818
resource-agents-aliyun-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: b2683c4c65c4de0d62273fa3fc31171985f854fb60593c08a7ea4f6176cddec3
resource-agents-aliyun-debuginfo-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: 6cb5ba9292e88de8ff83d95e0ebe97dafbec1ef840e45215b178e0931c9d1586
resource-agents-debuginfo-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: ad1d6e1ffe7fe6593f553207a28f28694c8300585c7304541301833e1812c438
resource-agents-debugsource-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: f90f5c9eb3d5ae5101efd030ca7e7ce959535a47d57bdef11a03b285a430282e
resource-agents-gcp-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: 55bb17c380d171a28a17af25b4033048840d162204e2d2de3f8ecb33a7ba1ca8
resource-agents-paf-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: 3bdb0fb6da6503dbdec7c78271deb9830a31d751620104ab3fcd7f4400a9f808

Red Hat Enterprise Linux High Availability for ARM 64 8

SRPM
resource-agents-4.9.0-54.el8_10.33.src.rpm SHA-256: 30aa1a37fa5ef5067ee02fde0e5d6ffe6bc19035a7e539c2b28eddcbfc0361c0
aarch64
resource-agents-4.9.0-54.el8_10.33.aarch64.rpm SHA-256: 1bb6fde15f970438b9e6d52bfdb79405b4ded1bb8ec53f6f1ed4f5327ef719d4
resource-agents-debuginfo-4.9.0-54.el8_10.33.aarch64.rpm SHA-256: 054a9ad05154f766b53a7e377a838a114b79bb9b7494e41ca6a12d59396b8f0c
resource-agents-debugsource-4.9.0-54.el8_10.33.aarch64.rpm SHA-256: b16d16fe5ea1a75119d4381d3b748b5f354f10a39ae2f597facf5e34fa0ebb58
resource-agents-paf-4.9.0-54.el8_10.33.aarch64.rpm SHA-256: 05facd4e62a9128f62f9c3afe8d5d3d9863e23789d96dc26d65e6eeda839210e

Red Hat Enterprise Linux Resilient Storage for x86_64 8

SRPM
resource-agents-4.9.0-54.el8_10.33.src.rpm SHA-256: 30aa1a37fa5ef5067ee02fde0e5d6ffe6bc19035a7e539c2b28eddcbfc0361c0
x86_64
resource-agents-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: 673345e8a9a35ca2a7c9afdcfe0bef9441f18a10700910a674b72d60fc5ab818
resource-agents-aliyun-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: b2683c4c65c4de0d62273fa3fc31171985f854fb60593c08a7ea4f6176cddec3
resource-agents-aliyun-debuginfo-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: 6cb5ba9292e88de8ff83d95e0ebe97dafbec1ef840e45215b178e0931c9d1586
resource-agents-debuginfo-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: ad1d6e1ffe7fe6593f553207a28f28694c8300585c7304541301833e1812c438
resource-agents-debugsource-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: f90f5c9eb3d5ae5101efd030ca7e7ce959535a47d57bdef11a03b285a430282e
resource-agents-gcp-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: 55bb17c380d171a28a17af25b4033048840d162204e2d2de3f8ecb33a7ba1ca8
resource-agents-paf-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: 3bdb0fb6da6503dbdec7c78271deb9830a31d751620104ab3fcd7f4400a9f808

Red Hat Enterprise Linux Resilient Storage for IBM z Systems 8

SRPM
resource-agents-4.9.0-54.el8_10.33.src.rpm SHA-256: 30aa1a37fa5ef5067ee02fde0e5d6ffe6bc19035a7e539c2b28eddcbfc0361c0
s390x
resource-agents-4.9.0-54.el8_10.33.s390x.rpm SHA-256: 22e9ffbef5dee532055e0ecb0254c6fceeedd7cc6e71bb26c19b780bd9ed6c34
resource-agents-debuginfo-4.9.0-54.el8_10.33.s390x.rpm SHA-256: f438c2249665c05f400a3d09c4d27ee5230145c75c33139333fb69c91c241642
resource-agents-debugsource-4.9.0-54.el8_10.33.s390x.rpm SHA-256: e6339ba579c0263c9e9d5bf049769771482c090da26bf00c684a83d124fd3c47
resource-agents-paf-4.9.0-54.el8_10.33.s390x.rpm SHA-256: eb114b7636980aac9eb4a5c30da63e27478281616a1f9ffa9f67a868a458be52

Red Hat Enterprise Linux High Availability for IBM z Systems 8

SRPM
resource-agents-4.9.0-54.el8_10.33.src.rpm SHA-256: 30aa1a37fa5ef5067ee02fde0e5d6ffe6bc19035a7e539c2b28eddcbfc0361c0
s390x
resource-agents-4.9.0-54.el8_10.33.s390x.rpm SHA-256: 22e9ffbef5dee532055e0ecb0254c6fceeedd7cc6e71bb26c19b780bd9ed6c34
resource-agents-debuginfo-4.9.0-54.el8_10.33.s390x.rpm SHA-256: f438c2249665c05f400a3d09c4d27ee5230145c75c33139333fb69c91c241642
resource-agents-debugsource-4.9.0-54.el8_10.33.s390x.rpm SHA-256: e6339ba579c0263c9e9d5bf049769771482c090da26bf00c684a83d124fd3c47
resource-agents-paf-4.9.0-54.el8_10.33.s390x.rpm SHA-256: eb114b7636980aac9eb4a5c30da63e27478281616a1f9ffa9f67a868a458be52

Red Hat Enterprise Linux Resilient Storage for Power, little endian 8

SRPM
resource-agents-4.9.0-54.el8_10.33.src.rpm SHA-256: 30aa1a37fa5ef5067ee02fde0e5d6ffe6bc19035a7e539c2b28eddcbfc0361c0
ppc64le
resource-agents-4.9.0-54.el8_10.33.ppc64le.rpm SHA-256: 257c7e0eac272d327fe72fed809d485c912f66c784764b1a6219f3cb33146e20
resource-agents-debuginfo-4.9.0-54.el8_10.33.ppc64le.rpm SHA-256: 9ddd33062fd24b537622ee43128cd6a9e7de00be8212219ee7a17753f8721ce3
resource-agents-debugsource-4.9.0-54.el8_10.33.ppc64le.rpm SHA-256: fa582f975a28b2210ba2d74c78d4ebdb29f8d45057e02826271a1fdb360e0ec6
resource-agents-paf-4.9.0-54.el8_10.33.ppc64le.rpm SHA-256: b68d03f912270cce8979d00792ccd496ff00898789b086662dfc203199fd8868

Red Hat Enterprise Linux High Availability for Power, little endian 8

SRPM
resource-agents-4.9.0-54.el8_10.33.src.rpm SHA-256: 30aa1a37fa5ef5067ee02fde0e5d6ffe6bc19035a7e539c2b28eddcbfc0361c0
ppc64le
resource-agents-4.9.0-54.el8_10.33.ppc64le.rpm SHA-256: 257c7e0eac272d327fe72fed809d485c912f66c784764b1a6219f3cb33146e20
resource-agents-debuginfo-4.9.0-54.el8_10.33.ppc64le.rpm SHA-256: 9ddd33062fd24b537622ee43128cd6a9e7de00be8212219ee7a17753f8721ce3
resource-agents-debugsource-4.9.0-54.el8_10.33.ppc64le.rpm SHA-256: fa582f975a28b2210ba2d74c78d4ebdb29f8d45057e02826271a1fdb360e0ec6
resource-agents-paf-4.9.0-54.el8_10.33.ppc64le.rpm SHA-256: b68d03f912270cce8979d00792ccd496ff00898789b086662dfc203199fd8868

Red Hat Enterprise Linux High Availability for ARM 64 - Extended Life Cycle 8.10

SRPM
resource-agents-4.9.0-54.el8_10.33.src.rpm SHA-256: 30aa1a37fa5ef5067ee02fde0e5d6ffe6bc19035a7e539c2b28eddcbfc0361c0
aarch64
resource-agents-4.9.0-54.el8_10.33.aarch64.rpm SHA-256: 1bb6fde15f970438b9e6d52bfdb79405b4ded1bb8ec53f6f1ed4f5327ef719d4
resource-agents-debuginfo-4.9.0-54.el8_10.33.aarch64.rpm SHA-256: 054a9ad05154f766b53a7e377a838a114b79bb9b7494e41ca6a12d59396b8f0c
resource-agents-debugsource-4.9.0-54.el8_10.33.aarch64.rpm SHA-256: b16d16fe5ea1a75119d4381d3b748b5f354f10a39ae2f597facf5e34fa0ebb58
resource-agents-paf-4.9.0-54.el8_10.33.aarch64.rpm SHA-256: 05facd4e62a9128f62f9c3afe8d5d3d9863e23789d96dc26d65e6eeda839210e

Red Hat Enterprise Linux High Availability for Power, little endian - Extended Life Cycle 8.10

SRPM
resource-agents-4.9.0-54.el8_10.33.src.rpm SHA-256: 30aa1a37fa5ef5067ee02fde0e5d6ffe6bc19035a7e539c2b28eddcbfc0361c0
ppc64le
resource-agents-4.9.0-54.el8_10.33.ppc64le.rpm SHA-256: 257c7e0eac272d327fe72fed809d485c912f66c784764b1a6219f3cb33146e20
resource-agents-debuginfo-4.9.0-54.el8_10.33.ppc64le.rpm SHA-256: 9ddd33062fd24b537622ee43128cd6a9e7de00be8212219ee7a17753f8721ce3
resource-agents-debugsource-4.9.0-54.el8_10.33.ppc64le.rpm SHA-256: fa582f975a28b2210ba2d74c78d4ebdb29f8d45057e02826271a1fdb360e0ec6
resource-agents-paf-4.9.0-54.el8_10.33.ppc64le.rpm SHA-256: b68d03f912270cce8979d00792ccd496ff00898789b086662dfc203199fd8868

Red Hat Enterprise Linux High Availability for IBM z Systems - Extended Life Cycle 8.10

SRPM
resource-agents-4.9.0-54.el8_10.33.src.rpm SHA-256: 30aa1a37fa5ef5067ee02fde0e5d6ffe6bc19035a7e539c2b28eddcbfc0361c0
s390x
resource-agents-4.9.0-54.el8_10.33.s390x.rpm SHA-256: 22e9ffbef5dee532055e0ecb0254c6fceeedd7cc6e71bb26c19b780bd9ed6c34
resource-agents-debuginfo-4.9.0-54.el8_10.33.s390x.rpm SHA-256: f438c2249665c05f400a3d09c4d27ee5230145c75c33139333fb69c91c241642
resource-agents-debugsource-4.9.0-54.el8_10.33.s390x.rpm SHA-256: e6339ba579c0263c9e9d5bf049769771482c090da26bf00c684a83d124fd3c47
resource-agents-paf-4.9.0-54.el8_10.33.s390x.rpm SHA-256: eb114b7636980aac9eb4a5c30da63e27478281616a1f9ffa9f67a868a458be52

Red Hat Enterprise Linux High Availability for x86_64 - Extended Life Cycle 8.10

SRPM
resource-agents-4.9.0-54.el8_10.33.src.rpm SHA-256: 30aa1a37fa5ef5067ee02fde0e5d6ffe6bc19035a7e539c2b28eddcbfc0361c0
x86_64
resource-agents-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: 673345e8a9a35ca2a7c9afdcfe0bef9441f18a10700910a674b72d60fc5ab818
resource-agents-aliyun-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: b2683c4c65c4de0d62273fa3fc31171985f854fb60593c08a7ea4f6176cddec3
resource-agents-aliyun-debuginfo-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: 6cb5ba9292e88de8ff83d95e0ebe97dafbec1ef840e45215b178e0931c9d1586
resource-agents-debuginfo-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: ad1d6e1ffe7fe6593f553207a28f28694c8300585c7304541301833e1812c438
resource-agents-debugsource-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: f90f5c9eb3d5ae5101efd030ca7e7ce959535a47d57bdef11a03b285a430282e
resource-agents-gcp-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: 55bb17c380d171a28a17af25b4033048840d162204e2d2de3f8ecb33a7ba1ca8
resource-agents-paf-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: 3bdb0fb6da6503dbdec7c78271deb9830a31d751620104ab3fcd7f4400a9f808

Red Hat Enterprise Linux Resilient Storage for Power, little endian - Extended Life Cycle 8.10

SRPM
resource-agents-4.9.0-54.el8_10.33.src.rpm SHA-256: 30aa1a37fa5ef5067ee02fde0e5d6ffe6bc19035a7e539c2b28eddcbfc0361c0
ppc64le
resource-agents-4.9.0-54.el8_10.33.ppc64le.rpm SHA-256: 257c7e0eac272d327fe72fed809d485c912f66c784764b1a6219f3cb33146e20
resource-agents-debuginfo-4.9.0-54.el8_10.33.ppc64le.rpm SHA-256: 9ddd33062fd24b537622ee43128cd6a9e7de00be8212219ee7a17753f8721ce3
resource-agents-debugsource-4.9.0-54.el8_10.33.ppc64le.rpm SHA-256: fa582f975a28b2210ba2d74c78d4ebdb29f8d45057e02826271a1fdb360e0ec6
resource-agents-paf-4.9.0-54.el8_10.33.ppc64le.rpm SHA-256: b68d03f912270cce8979d00792ccd496ff00898789b086662dfc203199fd8868

Red Hat Enterprise Linux Resilient Storage for IBM z Systems - Extended Life Cycle 8.10

SRPM
resource-agents-4.9.0-54.el8_10.33.src.rpm SHA-256: 30aa1a37fa5ef5067ee02fde0e5d6ffe6bc19035a7e539c2b28eddcbfc0361c0
s390x
resource-agents-4.9.0-54.el8_10.33.s390x.rpm SHA-256: 22e9ffbef5dee532055e0ecb0254c6fceeedd7cc6e71bb26c19b780bd9ed6c34
resource-agents-debuginfo-4.9.0-54.el8_10.33.s390x.rpm SHA-256: f438c2249665c05f400a3d09c4d27ee5230145c75c33139333fb69c91c241642
resource-agents-debugsource-4.9.0-54.el8_10.33.s390x.rpm SHA-256: e6339ba579c0263c9e9d5bf049769771482c090da26bf00c684a83d124fd3c47
resource-agents-paf-4.9.0-54.el8_10.33.s390x.rpm SHA-256: eb114b7636980aac9eb4a5c30da63e27478281616a1f9ffa9f67a868a458be52

Red Hat Enterprise Linux Resilient Storage for x86_64 - Extended Life Cycle 8.10

SRPM
resource-agents-4.9.0-54.el8_10.33.src.rpm SHA-256: 30aa1a37fa5ef5067ee02fde0e5d6ffe6bc19035a7e539c2b28eddcbfc0361c0
x86_64
resource-agents-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: 673345e8a9a35ca2a7c9afdcfe0bef9441f18a10700910a674b72d60fc5ab818
resource-agents-aliyun-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: b2683c4c65c4de0d62273fa3fc31171985f854fb60593c08a7ea4f6176cddec3
resource-agents-aliyun-debuginfo-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: 6cb5ba9292e88de8ff83d95e0ebe97dafbec1ef840e45215b178e0931c9d1586
resource-agents-debuginfo-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: ad1d6e1ffe7fe6593f553207a28f28694c8300585c7304541301833e1812c438
resource-agents-debugsource-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: f90f5c9eb3d5ae5101efd030ca7e7ce959535a47d57bdef11a03b285a430282e
resource-agents-gcp-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: 55bb17c380d171a28a17af25b4033048840d162204e2d2de3f8ecb33a7ba1ca8
resource-agents-paf-4.9.0-54.el8_10.33.x86_64.rpm SHA-256: 3bdb0fb6da6503dbdec7c78271deb9830a31d751620104ab3fcd7f4400a9f808

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.