Denial of Service due to memory exhaustion from malformed RELATIVE-OID
Summary
Denial of Service due to memory exhaustion from malformed RELATIVE-OID. Red Hat rates this important (CVSS 7.5). Weakness: CWE-770. Affected package(s): python-pyasn1, ansible-automation-platform, fence-agents, rhelai3/bootc-azure-rocm-rhel9:1778677745, resource-agents, automation-controller. Resolved in Red Hat advisory RHSA-2026:5606 — update the affected packages (`sudo dnf update`).
- python-pyasn1-0:0.5.1-4.el9
- ansible-automation-platform-25/ee-supported-rhel8:1777398315
- fence-agents-0:4.10.0-62.el9_4.22
- rhelai3/bootc-azure-rocm-rhel9:1778677745
- ansible-automation-platform-26/eda-controller-rhel9:1777296732
- resource-agents-0:4.9.0-40.el8_8.16
- python-pyasn1-0:0.3.7-6.el8_2.1
- python-pyasn1-0:0.6.2-1.el10_0.1
- python-pyasn1-0:0.3.7-6.el8_6.1
- automation-controller-0:4.6.26-1.el8ap
- fence-agents-0:4.2.1-65.el8_4.27
- python-pyasn1-0:0.3.7-6.el8_4.1
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
- RHSA-2026:5606
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
Mitigation checklist
- Update the affected package(s) to the fixed version shipped in RHSA-2026:5606 (`sudo dnf update` / `yum update`).
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.