rpm package
opensuse/erlang&distro=openSUSE Leap 15.5
pkg:rpm/opensuse/erlang&distro=openSUSE%20Leap%2015.5
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-48795 | Med | 5.9 | < 23.3.4.19-150300.3.14.1 | 23.3.4.19-150300.3.14.1 | Dec 18, 2023 | The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end | |
| CVE-2022-37026 | — | < 22.3-150300.3.8.1 | 22.3-150300.3.8.1 | Sep 21, 2022 | In Erlang/OTP before 23.3.4.15, 24.x before 24.3.4.2, and 25.x before 25.0.2, there is a Client Authentication Bypass in certain client-certification situations for SSL, TLS, and DTLS. |
- affected < 23.3.4.19-150300.3.14.1fixed 23.3.4.19-150300.3.14.1
The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end
- CVE-2022-37026Sep 21, 2022affected < 22.3-150300.3.8.1fixed 22.3-150300.3.8.1
In Erlang/OTP before 23.3.4.15, 24.x before 24.3.4.2, and 25.x before 25.0.2, there is a Client Authentication Bypass in certain client-certification situations for SSL, TLS, and DTLS.