Photon OS 4.0: Erlang PHSA-2026-4.0-1005

An update of the erlang package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-4.0-1005. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Hex 安全漏洞

Hex is a package management tool for the Erlang ecosystem developed by Hex Open Source. Versions of Hex from 0.16.0 to 2.4.2 contained security vulnerabilities. These vulnerabilities were due to insufficient verification of data authenticity, which could lead to bypassing dependency integrity...

CVE-2026-32147 affecting package erlang for versions less than 26.2.5.20-1

CVE-2026-32147 affecting package erlang for versions less than 26.2.5.20-1. An upgraded version of the package is available that resolves this issue...

CVE-2026-28808 affecting package erlang for versions less than 26.2.5.19-1

CVE-2026-28808 affecting package erlang for versions less than 26.2.5.19-1. A patched version of the package is available...

CVE-2026-23941 affecting package erlang for versions less than 26.2.5.18-1

CVE-2026-23941 affecting package erlang for versions less than 26.2.5.18-1. An upgraded version of the package is available that resolves this issue...

CVE-2026-23943 affecting package erlang for versions less than 26.2.5.18-1

CVE-2026-23943 affecting package erlang for versions less than 26.2.5.18-1. An upgraded version of the package is available that resolves this issue...

CVE-2026-23942 affecting package erlang for versions less than 26.2.5.18-1

CVE-2026-23942 affecting package erlang for versions less than 26.2.5.18-1. An upgraded version of the package is available that resolves this issue...

CVE-2026-23943 affecting package erlang for versions less than 25.3.2.21-5

CVE-2026-23943 affecting package erlang for versions less than 25.3.2.21-5. A patched version of the package is available...

CVE-2026-21620 affecting package erlang for versions less than 26.2.5.17-1

CVE-2026-21620 affecting package erlang for versions less than 26.2.5.17-1. An upgraded version of the package is available that resolves this issue...

AZL-79346 CVE-2026-3381 affecting package erlang 26.2.5.17-1

Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib. Compress::Raw::Zlib includes a copy of the zlib library. Compress::Raw::Zlib version 2.220 includes zlib 1.3.2, which addresses findings fron the 7ASecurity audit of zlib. The includes fixs for...

Fedora 42 : erlang (2026-d51972eee3)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-d51972eee3 advisory. Erlang ver. 26.2.5.17 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...

Fedora: Security Advisory (FEDORA-2026-d51972eee3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

AZL-78285 CVE-2026-21620 affecting package erlang 26.2.5.15-1

Relative Path Traversal, Improper Isolation or Compartmentalization vulnerability in erlang otp erlang/otp tftpfile modules, erlang otp inets tftpfile modules, erlang otp tftp tftpfile modules allows Relative Path Traversal. This vulnerability is associated with program files...

SUSE: Security Advisory (SUSE-SU-2026:20088-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DLA-4376-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

erlang27-27.1.3-1.1 on GA media (moderate)

erlang27-27.1.3-1.1 on GA media Announcement ID: openSUSE-SU-2025:15740-1 Rating: moderate Cross-References: CVE-2020-25623 CVE-2020-35733 CVE-2022-37026 CVE-2023-48795 CVE-2025-48041 CVSS scores: CVE-2022-37026 SUSE : 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L CVE-2023-48795 SUSE : 5.9...

OPENSUSE-SU-2025:15706-1 erlang-28.1.1-1.1 on GA media

These are all security issues fixed in the erlang-28.1.1-1.1 package on the GA media of openSUSE Tumbleweed...

SUSE: Security Advisory (SUSE-SU-2025:3807-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Advisory (SUSE-SU-2025:3807-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-48040 affecting package erlang for versions less than 26.2.5.15-1

CVE-2025-48040 affecting package erlang for versions less than 26.2.5.15-1. An upgraded version of the package is available that resolves this issue...