ELSA-2026-13644

ULN >
Oracle Linux Errata repository >
ELSA-2026-13644

ELSA-2026-13644 - corosync security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2026-05-05

Description

[3.1.9-2.1]
- Resolves: RHEL-163801
- Resolves: RHEL-163822

- totemsrp: Return error if sanity check fails (fixes CVE-2026-35091)
- totemsrp: Fix integer overflow in memb_join_sanity (fixes CVE-2026-35092)

Related CVEs

CVE-2026-35091

CVE-2026-35092

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 10 (aarch64)	corosync-3.1.9-2.el10_1.1.src.rpm	7415f87dcf3bdd7025b3afc79d9810054992a3641b49fa0e489be4eba4b882fe	-	ol10_aarch64_addons
	corosync-3.1.9-2.el10_1.1.src.rpm	7415f87dcf3bdd7025b3afc79d9810054992a3641b49fa0e489be4eba4b882fe	-	ol10_aarch64_appstream
	corosync-3.1.9-2.el10_1.1.src.rpm	7415f87dcf3bdd7025b3afc79d9810054992a3641b49fa0e489be4eba4b882fe	-	ol10_aarch64_codeready_builder
	corosync-3.1.9-2.el10_1.1.aarch64.rpm	7a847e77a28e71bf4053c126e643c96b0897c797e43eb6062c293790298ce504	-	ol10_aarch64_addons
	corosync-vqsim-3.1.9-2.el10_1.1.aarch64.rpm	8054a6a43d55c59138d103ec08663548e1602650741ceb65a581cfc595bcc9d5	-	ol10_aarch64_codeready_builder
	corosynclib-3.1.9-2.el10_1.1.aarch64.rpm	175a7e2352f97ac1b8ac6e13420bb576c00bcd42e4228c96ce4b162564206336	-	ol10_aarch64_addons
	corosynclib-3.1.9-2.el10_1.1.aarch64.rpm	175a7e2352f97ac1b8ac6e13420bb576c00bcd42e4228c96ce4b162564206336	-	ol10_aarch64_appstream

Oracle Linux 10 (x86_64)	corosync-3.1.9-2.el10_1.1.src.rpm	7415f87dcf3bdd7025b3afc79d9810054992a3641b49fa0e489be4eba4b882fe	-	ol10_x86_64_addons
	corosync-3.1.9-2.el10_1.1.src.rpm	7415f87dcf3bdd7025b3afc79d9810054992a3641b49fa0e489be4eba4b882fe	-	ol10_x86_64_appstream
	corosync-3.1.9-2.el10_1.1.src.rpm	7415f87dcf3bdd7025b3afc79d9810054992a3641b49fa0e489be4eba4b882fe	-	ol10_x86_64_codeready_builder
	corosync-3.1.9-2.el10_1.1.x86_64.rpm	283294da6957e4402a5db960e0a1c8cb3a78717681d30a0606d27a0735b84200	-	ol10_x86_64_addons
	corosync-vqsim-3.1.9-2.el10_1.1.x86_64.rpm	64fc953b9e04db517783467a3d935e977c2f98c8ef3feaffdb2a3eb7eb256b56	-	ol10_x86_64_codeready_builder
	corosynclib-3.1.9-2.el10_1.1.x86_64.rpm	2854f5cf0966ebd4c10f1b36adafb67e38aac64439009ec70078246dc4bc9e38	-	ol10_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691