Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2026/03/04 12:0 a.m.7 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: corosync (UTSA-2026-005515)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005515 advisory. Corosync through 3.1.9, if encryption is disabled or the attacker knows the encryption key, has a stack- based buffer overflow in orftokenendianconvert in...

9.8CVSS6.2AI score0.00433EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/10/04 12:0 a.m.3 views

RockyLinux 9 : corosync (RLSA-2025:7201)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:7201 advisory. corosync: Stack buffer overflow from 'orftokenendianconvert' CVE-2025-30472 Tenable has extracted the preceding description block directly from the RockyLinux...

9.8CVSS7.2AI score0.00433EPSS
Exploits1References3
Rockylinux
Rockylinux
added 2025/10/03 7:56 p.m.4 views

corosync security update

An update is available for corosync. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The corosync packages provide the Corosync Cluster Engine and C APIs for...

9.8CVSS7.3AI score0.00433EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2025/07/02 12:0 a.m.5 views

The vulnerability of the orf_token_endian_convert() function in the community-based communication system for Corosync-resistant clusters allows a perpetrator to execute arbitrary code or cause a service failure.

The vulnerability of the orftokenendianconvert function in the cluster-based communication system for Corosync-resistant clusters is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a...

9CVSS7.8AI score0.00433EPSS
Exploits1References13Affected Software6
OSV
OSV
added 2025/05/14 7:41 p.m.7 views

CLSA-2025-1747251688 corosync: Fix of CVE-2025-30472

CVE-2025-30472: fix stack-based buffer overflow in orftokenendianconvert by adding input validation for large UDP packets...

9.8CVSS6.1AI score0.00433EPSS
Exploits1References1
OSV
OSV
added 2025/04/03 12:54 p.m.5 views

OESA-2025-1365 corosync security update

This package contains the Corosync Cluster Engine Executive, several default APIs and libraries, default configuration files, and an init script. Security Fixes: Corosync through 3.1.9, if encryption is disabled or the attacker knows the encryption key, has a stack-based buffer overflow in...

9.8CVSS7.5AI score0.00433EPSS
Exploits1References2
SUSE Linux
SUSE Linux
added 2025/04/01 10:19 a.m.0 views

Security update for corosync

This update for corosync fixes the following issues: CVE-2025-30472: Fixed stack buffer overflow from 'orftokenendianconvert' bsc1239987 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can ru...

9CVSS7.1AI score0.00433EPSS
Exploits1References4
Rows per page
Query Builder