Red Hat Product Errata RHSA-2026:1904 - Security Advisory
Issued:
2026-02-04
Updated:
2026-02-04

RHSA-2026:1904 - Security Advisory

Synopsis

Important: resource-agents security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for resource-agents is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment.

Security Fix(es):

  • pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID (CVE-2026-23490)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux High Availability for x86_64 8 x86_64
  • Red Hat Enterprise Linux High Availability for ARM 64 8 aarch64
  • Red Hat Enterprise Linux Resilient Storage for x86_64 8 x86_64
  • Red Hat Enterprise Linux Resilient Storage for IBM z Systems 8 s390x
  • Red Hat Enterprise Linux High Availability for IBM z Systems 8 s390x
  • Red Hat Enterprise Linux Resilient Storage for Power, little endian 8 ppc64le
  • Red Hat Enterprise Linux High Availability for Power, little endian 8 ppc64le

Fixes

  • BZ - 2430472 - CVE-2026-23490 pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID

Red Hat Enterprise Linux High Availability for x86_64 8

SRPM
resource-agents-4.9.0-54.el8_10.28.src.rpm SHA-256: 99c2a13b45d74517ecb55e1b610502f7c5a4a70e8d6f5c64eea64022f124360a
x86_64
resource-agents-4.9.0-54.el8_10.28.x86_64.rpm SHA-256: acf298a5c91c709fad6c2248d8c94b62d6a6dc08d493517723f893ad427370eb
resource-agents-aliyun-4.9.0-54.el8_10.28.x86_64.rpm SHA-256: ce93e002a682c52d5e3a0906ec31699c967cc63f7bbc762e832c07b88097dc6f
resource-agents-aliyun-debuginfo-4.9.0-54.el8_10.28.x86_64.rpm SHA-256: 10c9d9f846d9352ee6662151ada5cd39ae1c254284dc461d1924ad46efff7235
resource-agents-debuginfo-4.9.0-54.el8_10.28.x86_64.rpm SHA-256: 209bb33b4b5025510c41b507aaa9601861c98d682279113de5a2570739d6307c
resource-agents-debugsource-4.9.0-54.el8_10.28.x86_64.rpm SHA-256: 94c8ded548dd7c52c71b271690d6cebda50ece20cf27620d78a5421404ead322
resource-agents-gcp-4.9.0-54.el8_10.28.x86_64.rpm SHA-256: 6ef8a94820108bc266e3cac18c6dd4ad25083f8ad52c356c0b037f78e1ac22a3
resource-agents-paf-4.9.0-54.el8_10.28.x86_64.rpm SHA-256: 79d975986d8d938f829513d328154d7742d813d4c1316c383ff5570ddfdc9886

Red Hat Enterprise Linux High Availability for ARM 64 8

SRPM
resource-agents-4.9.0-54.el8_10.28.src.rpm SHA-256: 99c2a13b45d74517ecb55e1b610502f7c5a4a70e8d6f5c64eea64022f124360a
aarch64
resource-agents-4.9.0-54.el8_10.28.aarch64.rpm SHA-256: a4d2c293afa4918dea378727d8158c371f6498fb4edf1a45e6af496f2eb4aa99
resource-agents-debuginfo-4.9.0-54.el8_10.28.aarch64.rpm SHA-256: d58c6c85a2997d3d7a4784e6c57e6cb6b3e86f0f1d0586a2a6821e09c72f9994
resource-agents-debugsource-4.9.0-54.el8_10.28.aarch64.rpm SHA-256: 8d753cee416e2b4068a20b152f0253eecfcd562a959616647e0e3109553f087a
resource-agents-paf-4.9.0-54.el8_10.28.aarch64.rpm SHA-256: 80b4f7e2406e6e755cb805b162267048e0c9faaae76a93e6c29cce524bc2c329

Red Hat Enterprise Linux Resilient Storage for x86_64 8

SRPM
resource-agents-4.9.0-54.el8_10.28.src.rpm SHA-256: 99c2a13b45d74517ecb55e1b610502f7c5a4a70e8d6f5c64eea64022f124360a
x86_64
resource-agents-4.9.0-54.el8_10.28.x86_64.rpm SHA-256: acf298a5c91c709fad6c2248d8c94b62d6a6dc08d493517723f893ad427370eb
resource-agents-aliyun-4.9.0-54.el8_10.28.x86_64.rpm SHA-256: ce93e002a682c52d5e3a0906ec31699c967cc63f7bbc762e832c07b88097dc6f
resource-agents-aliyun-debuginfo-4.9.0-54.el8_10.28.x86_64.rpm SHA-256: 10c9d9f846d9352ee6662151ada5cd39ae1c254284dc461d1924ad46efff7235
resource-agents-debuginfo-4.9.0-54.el8_10.28.x86_64.rpm SHA-256: 209bb33b4b5025510c41b507aaa9601861c98d682279113de5a2570739d6307c
resource-agents-debugsource-4.9.0-54.el8_10.28.x86_64.rpm SHA-256: 94c8ded548dd7c52c71b271690d6cebda50ece20cf27620d78a5421404ead322
resource-agents-gcp-4.9.0-54.el8_10.28.x86_64.rpm SHA-256: 6ef8a94820108bc266e3cac18c6dd4ad25083f8ad52c356c0b037f78e1ac22a3
resource-agents-paf-4.9.0-54.el8_10.28.x86_64.rpm SHA-256: 79d975986d8d938f829513d328154d7742d813d4c1316c383ff5570ddfdc9886

Red Hat Enterprise Linux Resilient Storage for IBM z Systems 8

SRPM
resource-agents-4.9.0-54.el8_10.28.src.rpm SHA-256: 99c2a13b45d74517ecb55e1b610502f7c5a4a70e8d6f5c64eea64022f124360a
s390x
resource-agents-4.9.0-54.el8_10.28.s390x.rpm SHA-256: c88c615eb6c623e7b84be28a2becf2b92a453c4fe9ec8d5b2f50bf731a738d89
resource-agents-debuginfo-4.9.0-54.el8_10.28.s390x.rpm SHA-256: 1fb4509dc2718840c1b4795702ffc8ffee5ea95a8035858b08732f6762de4bb1
resource-agents-debugsource-4.9.0-54.el8_10.28.s390x.rpm SHA-256: 144d265ef74170c151b7560f4ef8a4c70105418c439d572e53544fe13ab121b1
resource-agents-paf-4.9.0-54.el8_10.28.s390x.rpm SHA-256: 88f2d005da453304a089f2b1e76fa8ebb52b0926b230efdb0de0ea89a26b8107

Red Hat Enterprise Linux High Availability for IBM z Systems 8

SRPM
resource-agents-4.9.0-54.el8_10.28.src.rpm SHA-256: 99c2a13b45d74517ecb55e1b610502f7c5a4a70e8d6f5c64eea64022f124360a
s390x
resource-agents-4.9.0-54.el8_10.28.s390x.rpm SHA-256: c88c615eb6c623e7b84be28a2becf2b92a453c4fe9ec8d5b2f50bf731a738d89
resource-agents-debuginfo-4.9.0-54.el8_10.28.s390x.rpm SHA-256: 1fb4509dc2718840c1b4795702ffc8ffee5ea95a8035858b08732f6762de4bb1
resource-agents-debugsource-4.9.0-54.el8_10.28.s390x.rpm SHA-256: 144d265ef74170c151b7560f4ef8a4c70105418c439d572e53544fe13ab121b1
resource-agents-paf-4.9.0-54.el8_10.28.s390x.rpm SHA-256: 88f2d005da453304a089f2b1e76fa8ebb52b0926b230efdb0de0ea89a26b8107

Red Hat Enterprise Linux Resilient Storage for Power, little endian 8

SRPM
resource-agents-4.9.0-54.el8_10.28.src.rpm SHA-256: 99c2a13b45d74517ecb55e1b610502f7c5a4a70e8d6f5c64eea64022f124360a
ppc64le
resource-agents-4.9.0-54.el8_10.28.ppc64le.rpm SHA-256: 0adcb505a13787ae23f834c343cc59c2e30462d47fb157bd0840fc4064bbb169
resource-agents-debuginfo-4.9.0-54.el8_10.28.ppc64le.rpm SHA-256: b58047b429c5fdf3ed2239972abcd58b95ae18ef675583ba92ddbb57e29c9032
resource-agents-debugsource-4.9.0-54.el8_10.28.ppc64le.rpm SHA-256: ab1031c460731abe7be3ccbecb86b5cc7fa57377b3d49dace86d6a6fbf955c1c
resource-agents-paf-4.9.0-54.el8_10.28.ppc64le.rpm SHA-256: cc392135711868225fef1245286a39abfbc47586d169e70c28653f4e0297733a

Red Hat Enterprise Linux High Availability for Power, little endian 8

SRPM
resource-agents-4.9.0-54.el8_10.28.src.rpm SHA-256: 99c2a13b45d74517ecb55e1b610502f7c5a4a70e8d6f5c64eea64022f124360a
ppc64le
resource-agents-4.9.0-54.el8_10.28.ppc64le.rpm SHA-256: 0adcb505a13787ae23f834c343cc59c2e30462d47fb157bd0840fc4064bbb169
resource-agents-debuginfo-4.9.0-54.el8_10.28.ppc64le.rpm SHA-256: b58047b429c5fdf3ed2239972abcd58b95ae18ef675583ba92ddbb57e29c9032
resource-agents-debugsource-4.9.0-54.el8_10.28.ppc64le.rpm SHA-256: ab1031c460731abe7be3ccbecb86b5cc7fa57377b3d49dace86d6a6fbf955c1c
resource-agents-paf-4.9.0-54.el8_10.28.ppc64le.rpm SHA-256: cc392135711868225fef1245286a39abfbc47586d169e70c28653f4e0297733a

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.