Описание
ELSA-2025-7201: corosync security update (MODERATE)
[3.1.9-2]
-
Resolves: RHEL-84616
-
totemsrp: Check size of orf_token msg (fixes CVE-2025-30472)
[3.1.9-1]
-
Resolves: RHEL-65699
-
New upstream release (RHEL-65699)
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
corosync-vqsim
3.1.9-2.el9_6
corosynclib
3.1.9-2.el9_6
Oracle Linux x86_64
corosynclib
3.1.9-2.el9_6
corosync-vqsim
3.1.9-2.el9_6
Связанные CVE
Связанные уязвимости
Corosync through 3.1.9, if encryption is disabled or the attacker knows the encryption key, has a stack-based buffer overflow in orf_token_endian_convert in exec/totemsrp.c via a large UDP packet.
Corosync through 3.1.9, if encryption is disabled or the attacker knows the encryption key, has a stack-based buffer overflow in orf_token_endian_convert in exec/totemsrp.c via a large UDP packet.
Corosync through 3.1.9, if encryption is disabled or the attacker knows the encryption key, has a stack-based buffer overflow in orf_token_endian_convert in exec/totemsrp.c via a large UDP packet.
Corosync through 3.1.9, if encryption is disabled or the attacker know ...
