It was discovered that Corosync incorrectly handled the membership commit token validity check. A remote attacker could use this issue to cause Corosync to crash, resulting in a denial of service, or to possibly obtain a small quantity of sensitive information. (CVE-2026-35091)
It was discovered that Corosync incorrectly handled join message validation. A remote attacker could possibly use this issue to cause Corosync to crash, resulting in a denial of service. (CVE-2026-35092)
3.1.6-1ubuntu1.23.1.7-1ubuntu3.23.1.9-2ubuntu1.1