-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 07 May 2026 23:24:43 +0200
Source: corosync
Binary: corosync corosync-dbgsym corosync-notifyd corosync-notifyd-dbgsym corosync-vqsim corosync-vqsim-dbgsym libcfg-dev libcfg7 libcfg7-dbgsym libcmap-dev libcmap4 libcmap4-dbgsym libcorosync-common-dev libcorosync-common4 libcorosync-common4-dbgsym libcpg-dev libcpg4 libcpg4-dbgsym libquorum-dev libquorum5 libquorum5-dbgsym libsam-dev libsam4 libsam4-dbgsym libvotequorum-dev libvotequorum8 libvotequorum8-dbgsym
Architecture: i386
Version: 3.1.7-1+deb12u2
Distribution: bookworm-security
Urgency: high
Maintainer: i386 Build Daemon (x86-grnet-01) <buildd_amd64-x86-grnet-01@buildd.debian.org>
Changed-By: Ferenc Wágner <wferi@debian.org>
Description:
 corosync   - cluster engine daemon and utilities
 corosync-notifyd - cluster engine notification daemon
 corosync-vqsim - cluster engine votequorum simulator
 libcfg-dev - cluster engine CFG library development
 libcfg7    - cluster engine CFG library
 libcmap-dev - cluster engine CMAP library development
 libcmap4   - cluster engine CMAP library
 libcorosync-common-dev - cluster engine common development
 libcorosync-common4 - cluster engine common library
 libcpg-dev - cluster engine CPG library development
 libcpg4    - cluster engine CPG library
 libquorum-dev - cluster engine Quorum library development
 libquorum5 - cluster engine Quorum library
 libsam-dev - cluster engine SAM library development
 libsam4    - cluster engine SAM library
 libvotequorum-dev - cluster engine Votequorum library development
 libvotequorum8 - cluster engine Votequorum library
Closes: 1133837 1133838
Changes:
 corosync (3.1.7-1+deb12u2) bookworm-security; urgency=high
 .
   * [809a6e8] New patch: totemsrp: Return error if sanity check fails.
     Fixes CVE-2026-35091. Thanks to Jan Friesse (Closes: #1133838)
   * [70d459c] New patch: totemsrp: Fix integer overflow in memb_join_sanity.
     Fixes CVE-2026-35092. Thanks to Jan Friesse (Closes: #1133837)
Checksums-Sha1:
 0f7e51425e5012cfd75491787b96eafc1685fd93 648792 corosync-dbgsym_3.1.7-1+deb12u2_i386.deb
 92fd273225f5f3929559e86dcf990a42ed44db70 112836 corosync-notifyd-dbgsym_3.1.7-1+deb12u2_i386.deb
 2a5417bd79cc5aae3aec1deb462615e22b9d4d07 267196 corosync-notifyd_3.1.7-1+deb12u2_i386.deb
 ae9d724d78f33516f6fe0b095748e1f51ba70bba 244324 corosync-vqsim-dbgsym_3.1.7-1+deb12u2_i386.deb
 65583d96fc50ea937cc7084c213aae517a1974ad 309760 corosync-vqsim_3.1.7-1+deb12u2_i386.deb
 a4a905c4ebb6e137664ac92dd743eb96ef13290a 15551 corosync_3.1.7-1+deb12u2_i386-buildd.buildinfo
 525286c15884b48e4d0704c0385805725b40edc8 497564 corosync_3.1.7-1+deb12u2_i386.deb
 e664c2f9de60d7c97521f197dbd8b15edaea1228 252980 libcfg-dev_3.1.7-1+deb12u2_i386.deb
 66847f064994090b202855f0b9bde7c3556ad525 58680 libcfg7-dbgsym_3.1.7-1+deb12u2_i386.deb
 9b82d459173d4c3351379d5ca8fd06896d1f4488 256532 libcfg7_3.1.7-1+deb12u2_i386.deb
 54b77294318f104a8b996e02a1cf6e8595df25aa 285116 libcmap-dev_3.1.7-1+deb12u2_i386.deb
 01dbc364ce9c3e8513bab66f5d704bcacec57fed 62668 libcmap4-dbgsym_3.1.7-1+deb12u2_i386.deb
 9c27a9d26d580298c546e1a3f2cf5d9af615b3f2 258484 libcmap4_3.1.7-1+deb12u2_i386.deb
 54c333573326350e55f38fdc1c65e078768fc034 253528 libcorosync-common-dev_3.1.7-1+deb12u2_i386.deb
 022e06497312ff1ab1332aa113b3630f689cc46a 19456 libcorosync-common4-dbgsym_3.1.7-1+deb12u2_i386.deb
 a9c260ed684e20a823ed3128e4cfaedb2a27141a 253004 libcorosync-common4_3.1.7-1+deb12u2_i386.deb
 166988e49b5fec0c839e1de68d105e8bf59639dc 289360 libcpg-dev_3.1.7-1+deb12u2_i386.deb
 8f3119441c09990affabc1ff75ce8c6ddeff0fa1 75588 libcpg4-dbgsym_3.1.7-1+deb12u2_i386.deb
 39606e17e6f83e1d155a7272b7bec5cac3cac5ef 259316 libcpg4_3.1.7-1+deb12u2_i386.deb
 83270f45a02893f58cf416858baa5d147a075425 271604 libquorum-dev_3.1.7-1+deb12u2_i386.deb
 19e999ebe5f27ddedd402dbf9b95506e772ffbd1 50880 libquorum5-dbgsym_3.1.7-1+deb12u2_i386.deb
 6dba46c90866bb8fde3804a21d7f45753b330348 255020 libquorum5_3.1.7-1+deb12u2_i386.deb
 a497af903bd94defebaec4e3337add1405ea2778 278092 libsam-dev_3.1.7-1+deb12u2_i386.deb
 3b0696bf5abefa1aa0d11d9714cc0fa8313bf275 66780 libsam4-dbgsym_3.1.7-1+deb12u2_i386.deb
 2c1dc3c585331a7784522a9196a853345baff721 258956 libsam4_3.1.7-1+deb12u2_i386.deb
 fefa181660a7a84614402144805f1c874a4800bb 283672 libvotequorum-dev_3.1.7-1+deb12u2_i386.deb
 9c5fd2f1ef07051472badac4a2f7ac972c4fa147 53928 libvotequorum8-dbgsym_3.1.7-1+deb12u2_i386.deb
 5baa2067a5dba9e69539bff0cb1bd54d912954d9 256036 libvotequorum8_3.1.7-1+deb12u2_i386.deb
Checksums-Sha256:
 195130023d378b282896ad96b24358b37ae7aee30ca666ab28bd4a1ae1259d56 648792 corosync-dbgsym_3.1.7-1+deb12u2_i386.deb
 92c20f646cd7bd07833d22f758ef6d7e54479e2ba4615a83fbf81c8236562c98 112836 corosync-notifyd-dbgsym_3.1.7-1+deb12u2_i386.deb
 66dd08266c79d1f2a822f889fa74e91bf7325d54a8c3d1c750b825504a706e71 267196 corosync-notifyd_3.1.7-1+deb12u2_i386.deb
 d795865db8e156642c05805b62bb067a5a3fe1724cba526b0d8fb00f35068f65 244324 corosync-vqsim-dbgsym_3.1.7-1+deb12u2_i386.deb
 210142ac9cc237fb0e694a2f8cc53b194685cea4d39b2b8cf0a112ca06c5794a 309760 corosync-vqsim_3.1.7-1+deb12u2_i386.deb
 14b3a9269176113162c6ac7719de23a71f2546815831525bc4beb6610e537c90 15551 corosync_3.1.7-1+deb12u2_i386-buildd.buildinfo
 7280653e3b59f2661b22951224e67fb689eef2a56108b6ede92db39b04da1887 497564 corosync_3.1.7-1+deb12u2_i386.deb
 db5b2acbe2418a54a05fb5d371d61e496185e92cadda14b80ad73e7a42d58008 252980 libcfg-dev_3.1.7-1+deb12u2_i386.deb
 d1abc42ab02ad927c9155e0cdef35b45714a5e880ef5ece3ed644c3bf9e0448e 58680 libcfg7-dbgsym_3.1.7-1+deb12u2_i386.deb
 e66797357966cdbdee1aecb053370964a02a36c8015318e3e0fc8c55d0f2f555 256532 libcfg7_3.1.7-1+deb12u2_i386.deb
 cf15259f6fa281c574503b49a9b46b7dac1086f2af767e4b2e70307f9e270304 285116 libcmap-dev_3.1.7-1+deb12u2_i386.deb
 5c982297db0266cc657cfe394050f71b42f75e5381c7b2fb64bdcb2e52ef8f97 62668 libcmap4-dbgsym_3.1.7-1+deb12u2_i386.deb
 74ec0f7ac51fd62e443d615cd176eb55f4461819920778d1a62c9a2f61bbaab4 258484 libcmap4_3.1.7-1+deb12u2_i386.deb
 1d2c41ac8853fcc9f500fd0a59a718ca326106a96a4c9739f83cb76308b4d414 253528 libcorosync-common-dev_3.1.7-1+deb12u2_i386.deb
 b9a6d52f14b740ba9fb0a526ce7f00474be27d4e953a3d03239e0c130f0aadf4 19456 libcorosync-common4-dbgsym_3.1.7-1+deb12u2_i386.deb
 31d89f8f24875292ec2486b56afa03826fa33acd4af93794389f3813a294f13d 253004 libcorosync-common4_3.1.7-1+deb12u2_i386.deb
 37d6a166ca2f07e1b085afa05be89e7f38c01849a690786f0561004759a99232 289360 libcpg-dev_3.1.7-1+deb12u2_i386.deb
 6a2a2ba0e5a37adaeea004da44eaaa937fddb076f039ea42dfa522d949cdc93b 75588 libcpg4-dbgsym_3.1.7-1+deb12u2_i386.deb
 3915c0245de7aaa1d979e090815bd001fb27b6f14df465d450107a8928816b84 259316 libcpg4_3.1.7-1+deb12u2_i386.deb
 eb8cc617b388b1296c87e3c117cda604234f5a6bde6262f4b2429793ff0c473e 271604 libquorum-dev_3.1.7-1+deb12u2_i386.deb
 26d291132a62e8b22f68af57ceab5cc06cd6a4da02e4a1bde592b91475c1d0ea 50880 libquorum5-dbgsym_3.1.7-1+deb12u2_i386.deb
 ab75ce229abb845a3a784b7dc630dffd86b24568b12917a14864de6c66667509 255020 libquorum5_3.1.7-1+deb12u2_i386.deb
 becd88e886ffaf5a0a1f548c19994777734957841ec3e0760a0514af3c6407b1 278092 libsam-dev_3.1.7-1+deb12u2_i386.deb
 aed6b68ca7032e2631d3c47542eeb7eb3378197622bb6e8ff9b2f480b9e63097 66780 libsam4-dbgsym_3.1.7-1+deb12u2_i386.deb
 e910ce458a4713ebb65d18d5a270b6c56e556f06f92ca0bd0e03e6403ee06d7a 258956 libsam4_3.1.7-1+deb12u2_i386.deb
 c96d5ab34e1ca0ca78979965cd1c3409b36edda58ff3c56ed7178c783e72701c 283672 libvotequorum-dev_3.1.7-1+deb12u2_i386.deb
 a1e8293290a1e33353f82b3b8a6b34cadd17f6be83dde65d4a6d8ad9edd8cc31 53928 libvotequorum8-dbgsym_3.1.7-1+deb12u2_i386.deb
 53df292238845ab51e62ac14d0b4dff420217b95777bef585be4da6bd4e3616f 256036 libvotequorum8_3.1.7-1+deb12u2_i386.deb
Files:
 1adbbc3ec9fc363527a171123b6f667e 648792 debug optional corosync-dbgsym_3.1.7-1+deb12u2_i386.deb
 2d7e61a5fdf0a8dd6cf00ce228a66931 112836 debug optional corosync-notifyd-dbgsym_3.1.7-1+deb12u2_i386.deb
 1c9147f5c7f30d8e2efed8b1f4037dcc 267196 admin optional corosync-notifyd_3.1.7-1+deb12u2_i386.deb
 e0603f4a00eccf2cac36ed97504f75c6 244324 debug optional corosync-vqsim-dbgsym_3.1.7-1+deb12u2_i386.deb
 f51a7893de54b89c8b758d442325f456 309760 admin optional corosync-vqsim_3.1.7-1+deb12u2_i386.deb
 435295411ef6f98cb149a02db086f6e3 15551 admin optional corosync_3.1.7-1+deb12u2_i386-buildd.buildinfo
 13a81bb47dfb96da03a179d56c40a8c5 497564 admin optional corosync_3.1.7-1+deb12u2_i386.deb
 87ce3b0103c9ffb4aca5569b2928aa5b 252980 libdevel optional libcfg-dev_3.1.7-1+deb12u2_i386.deb
 269a86cef4031e5b2655815f79482c03 58680 debug optional libcfg7-dbgsym_3.1.7-1+deb12u2_i386.deb
 ec2da9d1bb1d52911bf3e6ab93d73c03 256532 libs optional libcfg7_3.1.7-1+deb12u2_i386.deb
 63a93255e114e7643f635e8856702e5a 285116 libdevel optional libcmap-dev_3.1.7-1+deb12u2_i386.deb
 a25bf1438d9a4f2270da564de7f32b8e 62668 debug optional libcmap4-dbgsym_3.1.7-1+deb12u2_i386.deb
 6fa538f34f269a22e8938c61c5f08ad9 258484 libs optional libcmap4_3.1.7-1+deb12u2_i386.deb
 fb180d38aaf68f9f474d13ffd4b315be 253528 libdevel optional libcorosync-common-dev_3.1.7-1+deb12u2_i386.deb
 7d7d51c7fcb799e6a61877c545bb2052 19456 debug optional libcorosync-common4-dbgsym_3.1.7-1+deb12u2_i386.deb
 e145c0087c8d48be00714312c612bd00 253004 libs optional libcorosync-common4_3.1.7-1+deb12u2_i386.deb
 5c4e42e69fc66bc84faccf0835dc671c 289360 libdevel optional libcpg-dev_3.1.7-1+deb12u2_i386.deb
 28188e53839f9b2086f3f885f471f984 75588 debug optional libcpg4-dbgsym_3.1.7-1+deb12u2_i386.deb
 9a9083b2454f3b0d66fb26f756ec9b39 259316 libs optional libcpg4_3.1.7-1+deb12u2_i386.deb
 4209cc45965402a2be611af2ee499909 271604 libdevel optional libquorum-dev_3.1.7-1+deb12u2_i386.deb
 1728fa379621809e00c2ef1f1db91333 50880 debug optional libquorum5-dbgsym_3.1.7-1+deb12u2_i386.deb
 f29a3d40e6cc3b090c7024d486a6cbe3 255020 libs optional libquorum5_3.1.7-1+deb12u2_i386.deb
 a8877849a4c8a810dee392608df0a5b1 278092 libdevel optional libsam-dev_3.1.7-1+deb12u2_i386.deb
 9834d30f686c59e722b22511a757f28e 66780 debug optional libsam4-dbgsym_3.1.7-1+deb12u2_i386.deb
 72fe08426aa457679780439a828e901b 258956 libs optional libsam4_3.1.7-1+deb12u2_i386.deb
 d77e624dd812814b9efaa5f7f68cc96f 283672 libdevel optional libvotequorum-dev_3.1.7-1+deb12u2_i386.deb
 3b714ff2200dec25eb48cf50f6972f64 53928 debug optional libvotequorum8-dbgsym_3.1.7-1+deb12u2_i386.deb
 d7d81fa5b1e7901ed2a210cc541a07bc 256036 libs optional libvotequorum8_3.1.7-1+deb12u2_i386.deb

-----BEGIN PGP SIGNATURE-----
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=lLn+
-----END PGP SIGNATURE-----