erlang
| Link | package | bugs open | bugs closed | Wiki | GitHub | web search |
| Description | General-purpose concurrent functional programming language developed by Ericsson |
| Version | 28.1.1-1 [extra] |
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-2900 | 28.0-2 | 28.0.1-1 | Medium | Fixed | |
| AVG-1457 | 23.2-3 | 23.2.2-1 | High | Fixed |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2025-4748 | AVG-2900 | Medium | No | Arbitrary file overwrite | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Erlang OTP (stdlib modules) allows Absolute Path Traversal,... |
| CVE-2020-35733 | AVG-1457 | High | Yes | Certificate verification bypass | An issue was discovered in Erlang/OTP before 23.2.2. The ssl application 10.2 accepts and trusts an invalid X.509 certificate chain to a trusted root... |
Advisories
| Date | Advisory | Group | Severity | Type |
|---|---|---|---|---|
| 20 Jan 2021 | ASA-202101-39 | AVG-1457 | High | certificate verification bypass |