AVG-1457 log

Package erlang
Status Fixed
Severity High
Type certificate verification bypass
Affected 23.2-3
Fixed 23.2.2-1
Current 27.0-1 [extra]
Ticket None
Created Fri Jan 15 14:58:49 2021
Issue Severity Remote Type Description
CVE-2020-35733 High Yes Certificate verification bypass
An issue was discovered in Erlang/OTP before 23.2.2. The ssl application 10.2 accepts and trusts an invalid X.509 certificate chain to a trusted root...
Date Advisory Package Type
20 Jan 2021 ASA-202101-39 erlang certificate verification bypass