corosync-2.4.5+git70.64010f57-1.2 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10695 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z corosync-2.4.5+git70.64010f57-1.2 on GA media These are all security issues fixed in the corosync-2.4.5+git70.64010f57-1.2 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10695 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:10695 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2018-1084/ SUSE CVE CVE-2018-1084 page openSUSE Tumbleweed corosync-2.4.5+git70.64010f57-1.2 corosync-qdevice-2.4.5+git70.64010f57-1.2 corosync-qnetd-2.4.5+git70.64010f57-1.2 corosync-testagents-2.4.5+git70.64010f57-1.2 libcfg6-2.4.5+git70.64010f57-1.2 libcfg6-32bit-2.4.5+git70.64010f57-1.2 libcmap4-2.4.5+git70.64010f57-1.2 libcmap4-32bit-2.4.5+git70.64010f57-1.2 libcorosync-devel-2.4.5+git70.64010f57-1.2 libcorosync_common4-2.4.5+git70.64010f57-1.2 libcorosync_common4-32bit-2.4.5+git70.64010f57-1.2 libcpg4-2.4.5+git70.64010f57-1.2 libcpg4-32bit-2.4.5+git70.64010f57-1.2 libquorum5-2.4.5+git70.64010f57-1.2 libquorum5-32bit-2.4.5+git70.64010f57-1.2 libsam4-2.4.5+git70.64010f57-1.2 libsam4-32bit-2.4.5+git70.64010f57-1.2 libtotem_pg5-2.4.5+git70.64010f57-1.2 libtotem_pg5-32bit-2.4.5+git70.64010f57-1.2 libvotequorum8-2.4.5+git70.64010f57-1.2 libvotequorum8-32bit-2.4.5+git70.64010f57-1.2 corosync-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed corosync-qdevice-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed corosync-qnetd-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed corosync-testagents-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed libcfg6-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed libcfg6-32bit-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed libcmap4-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed libcmap4-32bit-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed libcorosync-devel-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed libcorosync_common4-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed libcorosync_common4-32bit-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed libcpg4-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed libcpg4-32bit-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed libquorum5-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed libquorum5-32bit-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed libsam4-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed libsam4-32bit-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed libtotem_pg5-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed libtotem_pg5-32bit-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed libvotequorum8-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed libvotequorum8-32bit-2.4.5+git70.64010f57-1.2 as a component of openSUSE Tumbleweed corosync before version 2.4.4 is vulnerable to an integer overflow in exec/totemcrypto.c. CVE-2018-1084 openSUSE Tumbleweed:corosync-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:corosync-qdevice-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:corosync-qnetd-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:corosync-testagents-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:libcfg6-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:libcfg6-32bit-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:libcmap4-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:libcmap4-32bit-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:libcorosync-devel-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:libcorosync_common4-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:libcorosync_common4-32bit-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:libcpg4-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:libcpg4-32bit-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:libquorum5-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:libquorum5-32bit-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:libsam4-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:libsam4-32bit-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:libtotem_pg5-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:libtotem_pg5-32bit-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:libvotequorum8-2.4.5+git70.64010f57-1.2 openSUSE Tumbleweed:libvotequorum8-32bit-2.4.5+git70.64010f57-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-1084.html CVE-2018-1084 https://bugzilla.suse.com/1089346 SUSE Bug 1089346