25 matches found
Erlang/OTP 安全漏洞
Erlang/OTP is an open-source JavaScript library for handling exceptions, developed by Erlang/OTP. This library can catch exceptions caused by the built-in APIs of node.js. There were security vulnerabilities in versions of Erlang/OTP erts prior to 15.2.7.9, as well as in versions 16.4.0.2 and...
SUSE-SU-2026:20088-1 Security update for erlang
This update for erlang fixes the following issues: Update the ssh component to the latest in the maint-27 branch. Security issues fixed: - CVE-2025-48040: ssh: overly tolerant handling of data received from unauthenticated users when processing key exchange messages may lead to excessive resource...
OESA-2026-1030 erlang security update
Erlang is a general-purpose programming language and runtime environment. Erlang has built-in support for concurrency, distribution and fault tolerance. Erlang is used in several large telecommunication systems from Ericsson. Security Fixes: Allocation of Resources Without Limits or Throttling...
OESA-2026-1027 erlang security update
Erlang is a general-purpose programming language and runtime environment. Erlang has built-in support for concurrency, distribution and fault tolerance. Erlang is used in several large telecommunication systems from Ericsson. Security Fixes: Allocation of Resources Without Limits or Throttling...
Azure Linux 3.0 Security Update: erlang (CVE-2025-46712)
The version of erlang installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-46712 advisory. - Erlang/OTP is a set of libraries for the Erlang programming language. In versions prior to OTP-27.3.4 for...
OESA-2025-1461 erlang security update
Security Fixes: Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20, a SSH server may allow an attacker to perform unauthenticated remote code execution RCE. By exploiting a flaw in SSH protocol message handling, a...
Azure Linux 3.0 Security Update: erlang (CVE-2025-32433)
The version of erlang installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32433 advisory. - Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3,...
Security update for erlang
This update for erlang fixes the following issues: CVE-2025-32433: Fixed unauthenticated remote code execution in Erlang/OTP SSH bsc1241300 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...
Debian dsa-5906 : erlang - security update
The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5906 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5906-1 [email protected] https://www.debian.org/securit...
[SECURITY] [DLA 4132-1] erlang security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-4132-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès April 21, 2025 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 5906-1] erlang security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5906-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 20, 2025 https://www.debian.org/security/faq -...
DSA-5906-1 erlang - security update
Bulletin has no description...
Azure Linux 3.0 Security Update: erlang (CVE-2025-30211)
The version of erlang installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-30211 advisory. - Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.1, 26.2.5.1...
Security update for erlang
This update for erlang fixes the following issues: CVE-2025-26618: Fixed SSH SFTP packet size not verified properly in Erlang OTP bsc1237467. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you c...
SUSE-SU-2025:0901-1 Security update for erlang
This update for erlang fixes the following issues: - CVE-2025-26618: Fixed SSH SFTP packet size not verified properly in Erlang OTP bsc1237467...
CVE-2025-26618
A flaw was found in the Erlang OTP library. When multiple SSH packets are received, they may be combined into a single SFTP packet that exceeds the maximum allowed size. This flaw allows an authenticated remote attacker to trigger excessive memory allocation and cause a denial of service...
CVE-2025-26618 SSH SFTP packet size not verified properly in Erlang OTP
Erlang is a programming language and runtime system for building massively scalable soft real-time systems with requirements on high availability. OTP is a set of Erlang libraries, which consists of the Erlang runtime system, a number of ready-to-use components mainly written in Erlang. Packet si...
RHSA-2018:0242 Red Hat Security Advisory: erlang security update
Bulletin has no description...
RHSA-2018:0303 Red Hat Security Advisory: erlang security and bug fix update
Bulletin has no description...
RHSA-2018:0528 Red Hat Security Advisory: erlang security update
Bulletin has no description...