ELSA-2026-13657

ULN >
Oracle Linux Errata repository >
ELSA-2026-13657

ELSA-2026-13657 - corosync security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2026-05-08

Description

[3.1.8-1.1]
- Resolves: RHEL-163805
- Resolves: RHEL-163826

- totemsrp: Return error if sanity check fails (fixes CVE-2026-35091)
- totemsrp: Fix integer overflow in memb_join_sanity (fixes CVE-2026-35092)

Related CVEs

CVE-2026-35091

CVE-2026-35092

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	corosync-3.1.8-1.el8_10.1.src.rpm	f18afa6531299613ec98c6c4e9863063b3392d01a72feb6c31e68298d8a79c1b	-	ol8_aarch64_addons
	corosync-3.1.8-1.el8_10.1.src.rpm	f18afa6531299613ec98c6c4e9863063b3392d01a72feb6c31e68298d8a79c1b	-	ol8_aarch64_appstream
	corosync-3.1.8-1.el8_10.1.src.rpm	f18afa6531299613ec98c6c4e9863063b3392d01a72feb6c31e68298d8a79c1b	-	ol8_aarch64_codeready_builder
	corosync-3.1.8-1.el8_10.1.aarch64.rpm	a2c55646df2c13fa9f091a1718b7c6b598e88d0d2aacb8c63501de3c67a6aa64	-	ol8_aarch64_addons
	corosync-vqsim-3.1.8-1.el8_10.1.aarch64.rpm	a84868127f66e1416a8f8c92a0d11d3bf9cd6fd5e7eeb02f7757e1ef5309aed9	-	ol8_aarch64_codeready_builder
	corosynclib-3.1.8-1.el8_10.1.aarch64.rpm	1fcf30d0e98214d71b6bdf1ad126f6d9fc16bfdf383f5dbc05435cb4282c4ba2	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	corosync-3.1.8-1.el8_10.1.src.rpm	f18afa6531299613ec98c6c4e9863063b3392d01a72feb6c31e68298d8a79c1b	-	ol8_x86_64_addons
	corosync-3.1.8-1.el8_10.1.src.rpm	f18afa6531299613ec98c6c4e9863063b3392d01a72feb6c31e68298d8a79c1b	-	ol8_x86_64_appstream
	corosync-3.1.8-1.el8_10.1.src.rpm	f18afa6531299613ec98c6c4e9863063b3392d01a72feb6c31e68298d8a79c1b	-	ol8_x86_64_codeready_builder
	corosync-3.1.8-1.el8_10.1.x86_64.rpm	a36ee1ee6a8aaeb7d3139ae885b52ab1df86b14cec639a4579620b7de863427e	-	ol8_x86_64_addons
	corosync-vqsim-3.1.8-1.el8_10.1.x86_64.rpm	4bf9a580a529cb37d5894dda16daef42e5a6c7579971ce0f43e4c711c162ee9a	-	ol8_x86_64_codeready_builder
	corosynclib-3.1.8-1.el8_10.1.i686.rpm	016c8e080c9366adaad1042f5825ebe5cd3ea10eef0bb20e119ac960cb93a36b	-	ol8_x86_64_appstream
	corosynclib-3.1.8-1.el8_10.1.x86_64.rpm	8bd8039cecc1ba69f17c5fa738168a6830b0a9357528714da8d8165b13f0daf7	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691