Security News

Cybersecurity news aggregator

🐧
MEDIUM Updates Debian Security

DSA-6261-1 corosync - security update

cve-2026-35091cve-2026-35092corosyncdebian
  • What: Security update for Corosync cluster engine
  • Impact: Addresses denial of service and memory disclosure vulnerabilities
Read Full Article →

[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index] [SECURITY] [DSA 6261-1] corosync security update To: debian-security-announce@lists.debian.org Subject: [SECURITY] [DSA 6261-1] corosync security update From: Moritz Muehlenhoff <jmm@debian.org> Date: Sun, 10 May 2026 11:21:20 +0000 Message-id: <[🔎] agBqMPxaWM3vVVgh@seger.debian.org> Reply-to: debian-security-announce-request@lists.debian.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-6261-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff May 10, 2026 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : corosync CVE ID : CVE-2026-35091 CVE-2026-35092 Two security vulnerabilities were discovered in the Corosync cluster engine, which could result in denial of service or memory disclosure. For the oldstable distribution (bookworm), these problems have been fixed in version 3.1.7-1+deb12u2. For the stable distribution (trixie), these problems have been fixed in version 3.1.9-2+deb13u1. We recommend that you upgrade your corosync packages. For the detailed security status of corosync please refer to its security tracker page at: https://security-tracker.debian.org/tracker/corosync Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmoAafkACgkQEMKTtsN8 TjZmVQ//bG+GW9EJOPwDgzJyaEsR/tZ39XPIMhI24IWiTfzSgc3La6KzNVGd7FFT SqzTCH2kIN/pd/iZCuzFCvwc88tX1P0a37T15GP5q9d/kWxvI2fPjRLFpHCImXum CqkBQrGTcH5+lXbM/8HHBM/0e/M9DGaABauElmIXzzPtoYnYC8iSzTxE+dhCcq9h 5eND2qiWqMQdUAXUJFrtz/gFqDmqzG1TOK7aeanSLcMGtBeWrIN13D4nV4PmJS7d 1JhenrpCGfrtUf2K+2FN0aulkb+MJXt0nIZpxLO0KTPDdaVd7Gw4HQmgshIUrdCQ J7CzDqjZF3gUW4giqG1fOOg4RZ5bbKcza2RrTvgrxwVdG4SfCnAaTjvwqD0XilDq AbEIDEW5/BnbNJI1avMci9YtO6n3whSULyGzD9BNKNIFVrMgTr3zp8IQnUIUhxkp VyoghaECbRhB0XsVx/EeYq/tvrC32q+0KCDO7s83/yyStwLK4S6vDG49bBGVLiVy eJZqCWHa3pne1k4BbkdNr55BW41D4NeaiPVrh4QgHBNl4OZVZkJrniQ757HysK2b sCyErVQLdF5vUV/eYgZ0bKQXEeeItPVRl24UTnwl8WFpODtGrazqfvlrPByCzwRG Pf8bt8QL3MI7vnZ+gBaqqi12TwOhYwBxmtT2Lbo+puuyx14OIsQ= =EZYJ -----END PGP SIGNATURE----- Reply to: debian-security-announce@lists.debian.org Moritz Muehlenhoff (on-list) Moritz Muehlenhoff (off-list) Prev by Date: [SECURITY] [DSA 6260-1] tor security update Next by Date: [SECURITY] [DSA 6262-1] lcms2 security update Previous by thread: [SECURITY] [DSA 6260-1] tor security update Next by thread: [SECURITY] [DSA 6262-1] lcms2 security update Index(es): Date Thread

Related Articles

MEDIUM USN-8170-1: Corosync vulnerabilities Ubuntu Security MEDIUM RHSA-2026:19043: Moderate: corosync security update Red Hat Errata MEDIUM RHSA-2026:19200: Moderate: corosync security update Red Hat Errata MEDIUM RHSA-2026:20916: Moderate: corosync security update Red Hat Errata
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn