Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2026:0661-1

Опубликовано: 26 фев. 2026
Источник: suse-cvrf

Описание

Security update for erlang

This update for erlang fixes the following issues:

  • CVE-2025-48039:Fixed an excessive use of system resources. (bsc#1249469)
  • CVE-2025-48038:Fixed an excessive use of system resources. (bsc#1249470)
  • CVE-2025-48040:Fixed an excessive resource consumption. (bsc#1249472)

Список пакетов

SUSE Linux Enterprise Module for Server Applications 15 SP7
erlang-23.3.4.19-150300.3.29.1
erlang-epmd-23.3.4.19-150300.3.29.1
openSUSE Leap 15.6
erlang-23.3.4.19-150300.3.29.1
erlang-debugger-23.3.4.19-150300.3.29.1
erlang-debugger-src-23.3.4.19-150300.3.29.1
erlang-dialyzer-23.3.4.19-150300.3.29.1
erlang-dialyzer-src-23.3.4.19-150300.3.29.1
erlang-diameter-23.3.4.19-150300.3.29.1
erlang-diameter-src-23.3.4.19-150300.3.29.1
erlang-doc-23.3.4.19-150300.3.29.1
erlang-epmd-23.3.4.19-150300.3.29.1
erlang-et-23.3.4.19-150300.3.29.1
erlang-et-src-23.3.4.19-150300.3.29.1
erlang-jinterface-23.3.4.19-150300.3.29.1
erlang-jinterface-src-23.3.4.19-150300.3.29.1
erlang-observer-23.3.4.19-150300.3.29.1
erlang-observer-src-23.3.4.19-150300.3.29.1
erlang-reltool-23.3.4.19-150300.3.29.1
erlang-reltool-src-23.3.4.19-150300.3.29.1
erlang-src-23.3.4.19-150300.3.29.1
erlang-wx-23.3.4.19-150300.3.29.1
erlang-wx-src-23.3.4.19-150300.3.29.1

Ссылки

Описание

Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Resource Leak Exposure. This vulnerability is associated with program files lib/ssh/src/ssh_sftpd.erl. This issue affects OTP form OTP 17.0 until OTP 28.0.3, OTP 27.3.4.3 and 26.2.5.15 corresponding to ssh from 3.0.1 until 5.3.3, 5.2.11.3 and 5.1.4.12.

Затронутые продукты
SUSE Linux Enterprise Module for Server Applications 15 SP7:erlang-23.3.4.19-150300.3.29.1
SUSE Linux Enterprise Module for Server Applications 15 SP7:erlang-epmd-23.3.4.19-150300.3.29.1
openSUSE Leap 15.6:erlang-23.3.4.19-150300.3.29.1
openSUSE Leap 15.6:erlang-debugger-23.3.4.19-150300.3.29.1
Ссылки

Описание

Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Resource Leak Exposure. This vulnerability is associated with program files lib/ssh/src/ssh_sftpd.erl. This issue affects OTP form OTP 17.0 until OTP 28.0.3, OTP 27.3.4.3 and 26.2.5.15 corresponding to ssh from 3.0.1 until 5.3.3, 5.2.11.3 and 5.1.4.12.

Затронутые продукты
SUSE Linux Enterprise Module for Server Applications 15 SP7:erlang-23.3.4.19-150300.3.29.1
SUSE Linux Enterprise Module for Server Applications 15 SP7:erlang-epmd-23.3.4.19-150300.3.29.1
openSUSE Leap 15.6:erlang-23.3.4.19-150300.3.29.1
openSUSE Leap 15.6:erlang-debugger-23.3.4.19-150300.3.29.1
Ссылки

Описание

Uncontrolled Resource Consumption vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Flooding. This vulnerability is associated with program files lib/ssh/src/ssh_sftpd.erl. This issue affects OTP form OTP 17.0 until OTP 28.0.3, OTP 27.3.4.3 and 26.2.5.15 corresponding to ssh from 3.0.1 until 5.3.3, 5.2.11.3 and 5.1.4.12.

Затронутые продукты
SUSE Linux Enterprise Module for Server Applications 15 SP7:erlang-23.3.4.19-150300.3.29.1
SUSE Linux Enterprise Module for Server Applications 15 SP7:erlang-epmd-23.3.4.19-150300.3.29.1
openSUSE Leap 15.6:erlang-23.3.4.19-150300.3.29.1
openSUSE Leap 15.6:erlang-debugger-23.3.4.19-150300.3.29.1
Ссылки