corosynclib (AlmaLinux:10) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the AlmaLinux:10 package corosynclib, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (3)
CVE-2025-30472 — CVSS 9.0 (critical): Corosync through 3.1.9, if encryption is disabled or the attacker knows the encryption key, has a stack-based buffer overflow in…
CVE-2026-35091 — CVSS 8.2 (high): A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Corosync membership…
CVE-2026-35092 — CVSS 7.5 (high): A flaw was found in Corosync. An integer overflow vulnerability in Corosync's join message sanity validation allows a remote…