High severity8.2NVD Advisory· Published Apr 1, 2026· Updated May 26, 2026
CVE-2026-35091
CVE-2026-35091
Description
A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Corosync membership commit token sanity check by sending a specially crafted User Datagram Protocol (UDP) packet. This can lead to an out-of-bounds read, causing a denial of service (DoS) and potentially disclosing limited memory contents
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
19cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
- osv-coords13 versionspkg:rpm/almalinux/corosyncpkg:rpm/almalinux/corosynclibpkg:rpm/almalinux/corosynclib-develpkg:rpm/almalinux/corosync-vqsimpkg:rpm/almalinux/spauseddpkg:rpm/opensuse/corosync&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/corosync&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/corosync&distro=openSUSE%20Tumbleweedpkg:rpm/suse/corosync&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP4pkg:rpm/suse/corosync&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP5pkg:rpm/suse/corosync&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP6pkg:rpm/suse/corosync&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP7pkg:rpm/suse/corosync&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0
< 3.1.9-2.el10_1.1+ 12 more
- (no CPE)range: < 3.1.9-2.el10_1.1
- (no CPE)range: < 3.1.9-2.el10_1.1
- (no CPE)range: < 3.1.9-2.el10_1.1
- (no CPE)range: < 3.1.9-2.el10_1.1
- (no CPE)range: < 3.1.8-1.el8_10.1
- (no CPE)range: < 2.4.6-150300.12.16.1
- (no CPE)range: < 3.1.9-160000.3.1
- (no CPE)range: < 3.1.10-4.1
- (no CPE)range: < 2.4.6-150300.12.16.1
- (no CPE)range: < 2.4.6-150300.12.16.1
- (no CPE)range: < 2.4.6-150300.12.16.1
- (no CPE)range: < 2.4.6-150300.12.16.1
- (no CPE)range: < 3.1.9-160000.3.1
Patches
Vulnerability mechanics
References
17- bugzilla.redhat.com/show_bug.cginvdExploitThird Party Advisory
- access.redhat.com/security/cve/CVE-2026-35091nvdThird Party AdvisoryVDB Entry
- bugzilla.redhat.com/show_bug.cginvdIssue Tracking
- access.redhat.com/errata/RHSA-2026:13644nvd
- access.redhat.com/errata/RHSA-2026:13657nvd
- access.redhat.com/errata/RHSA-2026:13673nvd
- access.redhat.com/errata/RHSA-2026:14205nvd
- access.redhat.com/errata/RHSA-2026:14210nvd
- access.redhat.com/errata/RHSA-2026:14211nvd
- access.redhat.com/errata/RHSA-2026:14212nvd
- access.redhat.com/errata/RHSA-2026:14213nvd
- access.redhat.com/errata/RHSA-2026:14214nvd
- access.redhat.com/errata/RHSA-2026:14215nvd
- access.redhat.com/errata/RHSA-2026:14216nvd
- access.redhat.com/errata/RHSA-2026:19043nvd
- access.redhat.com/errata/RHSA-2026:19200nvd
- access.redhat.com/errata/RHSA-2026:20916nvd
News mentions
0No linked articles in our index yet.