VYPR

rpm package

suse/erlang&distro=SUSE Linux Enterprise Server 15 SP3-LTSS

pkg:rpm/suse/erlang&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS

Vulnerabilities (4)

  • CVE-2025-48041HigSep 11, 2025
    affected < 23.3.4.19-150300.3.26.1fixed 23.3.4.19-150300.3.26.1

    Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Flooding. This vulnerability is associated with program files lib/ssh/src/ssh_sftpd.erl. This issue affects OTP from OTP 17.0 until OTP 28.0.3, OT

  • CVE-2025-32433KEVApr 16, 2025
    affected < 23.3.4.19-150300.3.20.1fixed 23.3.4.19-150300.3.20.1

    Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20, a SSH server may allow an attacker to perform unauthenticated remote code execution (RCE). By exploiting a flaw in SSH protocol message handling,

  • CVE-2023-48795MedDec 18, 2023
    affected < 23.3.4.19-150300.3.14.1fixed 23.3.4.19-150300.3.14.1

    The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end

  • CVE-2022-37026Sep 21, 2022
    affected < 22.3-150300.3.8.1fixed 22.3-150300.3.8.1

    In Erlang/OTP before 23.3.4.15, 24.x before 24.3.4.2, and 25.x before 25.0.2, there is a Client Authentication Bypass in certain client-certification situations for SSL, TLS, and DTLS.