7 matches found
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: corosync (UTSA-2026-005515)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005515 advisory. Corosync through 3.1.9, if encryption is disabled or the attacker knows the encryption key, has a stack- based buffer overflow in orftokenendianconvert in...
RockyLinux 9 : corosync (RLSA-2025:7201)
The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:7201 advisory. corosync: Stack buffer overflow from 'orftokenendianconvert' CVE-2025-30472 Tenable has extracted the preceding description block directly from the RockyLinux...
corosync security update
An update is available for corosync. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The corosync packages provide the Corosync Cluster Engine and C APIs for...
The vulnerability of the orf_token_endian_convert() function in the community-based communication system for Corosync-resistant clusters allows a perpetrator to execute arbitrary code or cause a service failure.
The vulnerability of the orftokenendianconvert function in the cluster-based communication system for Corosync-resistant clusters is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a...
CLSA-2025-1747251688 corosync: Fix of CVE-2025-30472
CVE-2025-30472: fix stack-based buffer overflow in orftokenendianconvert by adding input validation for large UDP packets...
OESA-2025-1365 corosync security update
This package contains the Corosync Cluster Engine Executive, several default APIs and libraries, default configuration files, and an init script. Security Fixes: Corosync through 3.1.9, if encryption is disabled or the attacker knows the encryption key, has a stack-based buffer overflow in...
Security update for corosync
This update for corosync fixes the following issues: CVE-2025-30472: Fixed stack buffer overflow from 'orftokenendianconvert' bsc1239987 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can ru...