Package "corosync"

Name:	corosync
Description:	This package is just an umbrella for a group of other packages, it has no description. Description samples from packages in group: cluster engine notification daemon cluster engine votequorum simulator
Latest version:	3.1.9-2ubuntu1.1
Release:	questing (25.10)
Level:	security
Repository:	universe

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Other versions of "corosync" in Questing

Repository	Area	Version
base	main	3.1.9-2ubuntu1
base	universe	3.1.9-2ubuntu1
security	main	3.1.9-2ubuntu1.1

Packages in group

Deleted packages are displayed in grey.

Changelog

Version: 3.1.9-2ubuntu1.1 2026-04-13 19:10:44 UTC

corosync (3.1.9-2ubuntu1.1) questing-security; urgency=medium * SECURITY UPDATE: DoS via wrong return value - debian/patches/CVE-2026-35091.patch: return error if sanity check fails in exec/totemsrp.c. - CVE-2026-35091 * SECURITY UPDATE: DoS via integer overflow - debian/patches/CVE-2026-35092.patch: fix integer overflow in memb_join_sanity in exec/totemsrp.c. - CVE-2026-35092 -- Marc Deslauriers <email address hidden> Fri, 10 Apr 2026 08:09:19 -0400

CVE-2026-35091	A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Corosync membership commit toke
CVE-2026-35092	A flaw was found in Corosync. An integer overflow vulnerability in Corosync's join message sanity validation allows a remote, unauthenticated attacke

About - Send Feedback to @ubuntu_updates

Package "corosync"

Links

Other versions of "corosync" in Questing

Packages in group

Changelog

Share this page

Bookmarks

Latest updates

updates

security

backports

PPA updates