[El-errata] ELSA-2026-13657 Moderate: Oracle Linux 8 corosync security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Thu May 14 22:43:17 UTC 2026
Oracle Linux Security Advisory ELSA-2026-13657
http://linux.oracle.com/errata/ELSA-2026-13657.html
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
x86_64:
corosync-vqsim-3.1.8-1.el8_10.1.x86_64.rpm
corosynclib-3.1.8-1.el8_10.1.i686.rpm
corosynclib-3.1.8-1.el8_10.1.x86_64.rpm
aarch64:
corosync-vqsim-3.1.8-1.el8_10.1.aarch64.rpm
corosynclib-3.1.8-1.el8_10.1.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/corosync-3.1.8-1.el8_10.1.src.rpm
Related CVEs:
CVE-2026-35091
CVE-2026-35092
Description of changes:
[3.1.8-1.1]
- Resolves: RHEL-163805
- Resolves: RHEL-163826
- totemsrp: Return error if sanity check fails (fixes CVE-2026-35091)
- totemsrp: Fix integer overflow in memb_join_sanity (fixes CVE-2026-35092)
More information about the El-errata
mailing list