Red Hat Security Advisory: corosync security update
Two vulnerabilities have been identified in the corosync packages used by Red Hat Enterprise Linux cluster software. CVE-2026-35091 allows denial of service and information disclosure via a crafted UDP packet. CVE-2026-35092 allows denial of service through an integer overflow in join message validation. These issues affect multiple Red Hat Enterprise Linux 10 variants and related cluster software. Red Hat has issued a security advisory rating the impact as moderate and has released updated packages to address these vulnerabilities.
AI Analysis
Technical Summary
The corosync packages in Red Hat Enterprise Linux 10 contain two security flaws: CVE-2026-35091 enables denial of service and information disclosure through crafted UDP packets, and CVE-2026-35092 enables denial of service via an integer overflow during join message validation. Both vulnerabilities impact the Corosync Cluster Engine and its C APIs. Red Hat has published an advisory (RHSA-2026:19043) detailing these issues and providing updated packages to remediate them. The vulnerabilities are rated with moderate severity by Red Hat Product Security.
Potential Impact
Successful exploitation of CVE-2026-35091 can cause denial of service and information disclosure. CVE-2026-35092 can cause denial of service due to integer overflow. These vulnerabilities affect cluster communication and stability in Red Hat Enterprise Linux 10 environments using corosync. No known exploits in the wild have been reported at this time.
Mitigation Recommendations
Red Hat has released updated corosync packages for Red Hat Enterprise Linux 10 and related variants to address these vulnerabilities. Users should apply the security updates as described in Red Hat advisory RHSA-2026:19043 and the referenced article https://access.redhat.com/articles/11258. No additional mitigation steps are indicated by the vendor beyond applying the official patches.
Red Hat Security Advisory: corosync security update
Description
Two vulnerabilities have been identified in the corosync packages used by Red Hat Enterprise Linux cluster software. CVE-2026-35091 allows denial of service and information disclosure via a crafted UDP packet. CVE-2026-35092 allows denial of service through an integer overflow in join message validation. These issues affect multiple Red Hat Enterprise Linux 10 variants and related cluster software. Red Hat has issued a security advisory rating the impact as moderate and has released updated packages to address these vulnerabilities.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The corosync packages in Red Hat Enterprise Linux 10 contain two security flaws: CVE-2026-35091 enables denial of service and information disclosure through crafted UDP packets, and CVE-2026-35092 enables denial of service via an integer overflow during join message validation. Both vulnerabilities impact the Corosync Cluster Engine and its C APIs. Red Hat has published an advisory (RHSA-2026:19043) detailing these issues and providing updated packages to remediate them. The vulnerabilities are rated with moderate severity by Red Hat Product Security.
Potential Impact
Successful exploitation of CVE-2026-35091 can cause denial of service and information disclosure. CVE-2026-35092 can cause denial of service due to integer overflow. These vulnerabilities affect cluster communication and stability in Red Hat Enterprise Linux 10 environments using corosync. No known exploits in the wild have been reported at this time.
Mitigation Recommendations
Red Hat has released updated corosync packages for Red Hat Enterprise Linux 10 and related variants to address these vulnerabilities. Users should apply the security updates as described in Red Hat advisory RHSA-2026:19043 and the referenced article https://access.redhat.com/articles/11258. No additional mitigation steps are indicated by the vendor beyond applying the official patches.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:19043
- Cve Count
- 2
- Additional Cves
- ["CVE-2026-35092"]
- Cvss Version
- null
Threat ID: 6a160959e29bf47b5062135d
Added to database: 5/26/2026, 8:58:01 PM
Last enriched: 5/26/2026, 9:18:43 PM
Last updated: 5/27/2026, 5:04:10 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.