12 matches found
Mageia: Security Advisory (MGASA-2015-0192)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 14.04 LTS / 16.04 LTS : Erlang vulnerabilities (USN-3571-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3571-1 advisory. It was discovered that the Erlang FTP module incorrectly handled certain CRLF sequences. A remote attacker could possibly use this issue to...
Ubuntu: Security Advisory (USN-3571-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 23 : erlang (2015-33583e5029)
Security fix for CVE-2015-2774 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...
CVE-2015-2774
Erlang/OTP before 18.0-rc1 does not properly check CBC padding bytes when terminating connections, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, a variant of CVE-2014-3566 aka POODLE...
CVE-2015-2774
Erlang/OTP before 18.0-rc1 does not properly check CBC padding bytes when terminating connections, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, a variant of CVE-2014-3566 aka POODLE...
CVE-2015-2774
Technical details for CVE-2015-2774 are not publicly available in the provided connected documents. The materials reference POODLE-related padding oracle (CVE-2014-3566) but do not supply product/version/root-cause/fix information for CVE-2015-2774. Monitor for updates.
openSUSE Security Update : erlang (openSUSE-2016-245)
This update for erlang fixes the following issues : - CVE-2015-2774: Erlang/OTP was vulnerable to Poodle in its TLS-1.0 implementation - removed default support for SSL 3.0 and added padding check for TLS 1.0 boo924915 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...
Fedora Update for erlang FEDORA-2015-12923
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 21 : erlang-17.4-4.fc21 (2015-12970)
Security fix for CVE-2015-2774 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Fedora 22 : erlang-17.4-4.fc22 (2015-12923)
Security fix for CVE-2015-2774 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Updated erlang packages fix CVE-2015-2774
Updated erlang packages fix security vulnerability: Erlang's TLS-1.0 implementation failed to check padding bytes, leaving it vulnerable to an issue similar to POODLE CVE-2015-2774...