CESA-2018:1169 -- centos 7 corosyncID: oval:org.secpod.oval:def:204828 | Date: (C)2018-06-01 (M)2023-02-08 |
Class: PATCH | Family: unix |
The corosync packages provide the Corosync Cluster Engine and C APIs for Red Hat Enterprise Linux cluster software. Security Fix: * corosync: Integer overflow in exec/totemcrypto.c:authenticate_nss_2_3 function For more details about the security issue, including the impact, a CVSS score, and other related information, refer to the CVE page listed in the References section. Red Hat would like to thank Citrix Security Response Team for reporting this issue.