Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2026:0023-1

Опубликовано: 05 янв. 2026
Источник: suse-cvrf

Описание

Security update for erlang26

This update for erlang26 fixes the following issues:

  • CVE-2025-48040: Excessive resource consumption (bsc#1249472)
  • CVE-2025-48039: Excessive use of system resources (bsc#1249469)
  • CVE-2025-48038: Excessive use of system resources (bsc#1249470)

Список пакетов

SUSE Linux Enterprise Module for Server Applications 15 SP7
erlang26-26.2.1-150300.7.22.1
erlang26-epmd-26.2.1-150300.7.22.1
openSUSE Leap 15.6
erlang26-26.2.1-150300.7.22.1
erlang26-debugger-26.2.1-150300.7.22.1
erlang26-debugger-src-26.2.1-150300.7.22.1
erlang26-dialyzer-26.2.1-150300.7.22.1
erlang26-dialyzer-src-26.2.1-150300.7.22.1
erlang26-diameter-26.2.1-150300.7.22.1
erlang26-diameter-src-26.2.1-150300.7.22.1
erlang26-doc-26.2.1-150300.7.22.1
erlang26-epmd-26.2.1-150300.7.22.1
erlang26-et-26.2.1-150300.7.22.1
erlang26-et-src-26.2.1-150300.7.22.1
erlang26-jinterface-26.2.1-150300.7.22.1
erlang26-jinterface-src-26.2.1-150300.7.22.1
erlang26-observer-26.2.1-150300.7.22.1
erlang26-observer-src-26.2.1-150300.7.22.1
erlang26-reltool-26.2.1-150300.7.22.1
erlang26-reltool-src-26.2.1-150300.7.22.1
erlang26-src-26.2.1-150300.7.22.1
erlang26-wx-26.2.1-150300.7.22.1
erlang26-wx-src-26.2.1-150300.7.22.1

Ссылки

Описание

Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Resource Leak Exposure. This vulnerability is associated with program files lib/ssh/src/ssh_sftpd.erl. This issue affects OTP form OTP 17.0 until OTP 28.0.3, OTP 27.3.4.3 and 26.2.5.15 corresponding to ssh from 3.0.1 until 5.3.3, 5.2.11.3 and 5.1.4.12.

Затронутые продукты
SUSE Linux Enterprise Module for Server Applications 15 SP7:erlang26-26.2.1-150300.7.22.1
SUSE Linux Enterprise Module for Server Applications 15 SP7:erlang26-epmd-26.2.1-150300.7.22.1
openSUSE Leap 15.6:erlang26-26.2.1-150300.7.22.1
openSUSE Leap 15.6:erlang26-debugger-26.2.1-150300.7.22.1
Ссылки

Описание

Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Resource Leak Exposure. This vulnerability is associated with program files lib/ssh/src/ssh_sftpd.erl. This issue affects OTP form OTP 17.0 until OTP 28.0.3, OTP 27.3.4.3 and 26.2.5.15 corresponding to ssh from 3.0.1 until 5.3.3, 5.2.11.3 and 5.1.4.12.

Затронутые продукты
SUSE Linux Enterprise Module for Server Applications 15 SP7:erlang26-26.2.1-150300.7.22.1
SUSE Linux Enterprise Module for Server Applications 15 SP7:erlang26-epmd-26.2.1-150300.7.22.1
openSUSE Leap 15.6:erlang26-26.2.1-150300.7.22.1
openSUSE Leap 15.6:erlang26-debugger-26.2.1-150300.7.22.1
Ссылки

Описание

Uncontrolled Resource Consumption vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Flooding. This vulnerability is associated with program files lib/ssh/src/ssh_sftpd.erl. This issue affects OTP form OTP 17.0 until OTP 28.0.3, OTP 27.3.4.3 and 26.2.5.15 corresponding to ssh from 3.0.1 until 5.3.3, 5.2.11.3 and 5.1.4.12.

Затронутые продукты
SUSE Linux Enterprise Module for Server Applications 15 SP7:erlang26-26.2.1-150300.7.22.1
SUSE Linux Enterprise Module for Server Applications 15 SP7:erlang26-epmd-26.2.1-150300.7.22.1
openSUSE Leap 15.6:erlang26-26.2.1-150300.7.22.1
openSUSE Leap 15.6:erlang26-debugger-26.2.1-150300.7.22.1
Ссылки