Search for packages
| purl | pkg:rpm/redhat/fence-agents@4.10.0-43.el9_2?arch=2 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 4.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-969r-9mvk-uyh4
Aliases: CVE-2023-43804 GHSA-v845-jxx5-vc9f PYSEC-2023-192 |
urllib3 is a user-friendly HTTP client library for Python. urllib3 doesn't treat the `Cookie` HTTP header special or provide any helpers for managing cookies over HTTP, that is the responsibility of the user. However, it is possible for a user to specify a `Cookie` header and unknowingly leak information via HTTP redirects to a different origin if that user doesn't disable redirects explicitly. This issue has been patched in urllib3 version 1.26.17 or 2.0.5. | There are no reported fixed by versions. |
|
VCID-qx4m-q293-ckhj
Aliases: CVE-2023-37920 GHSA-xqr8-7jwr-rhp7 PYSEC-2023-135 |
Certifi 2023.07.22 removes root certificates from "e-Tugra" from the root store. These are in the process of being removed from Mozilla's trust store. e-Tugra's root certificates are being removed pursuant to an investigation prompted by reporting of security issues in their systems. | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T13:53:18.893696+00:00 | RedHat Importer | Affected by | VCID-qx4m-q293-ckhj | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-37920.json | 38.0.0 |
| 2026-04-01T13:52:29.838983+00:00 | RedHat Importer | Affected by | VCID-969r-9mvk-uyh4 | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-43804.json | 38.0.0 |