Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-42791 (GCVE-0-2026-42791)
Vulnerability from cvelistv5 – Published: 2026-05-27 12:23 – Updated: 2026-05-27 15:41
VLAI
EPSS
Title
OCSP responder certificate validity period not checked in public_key
Summary
Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows forged OCSP responses signed with an expired responder certificate to be accepted as valid.
OCSP response verification in pubkey_ocsp:verify_response/5 and pubkey_ocsp:is_authorized_responder/3 in lib/public_key/src/pubkey_ocsp.erl does not check the validity period (notBefore/notAfter) of the OCSP responder certificate. An attacker who has obtained the private key of an expired CA-designated OCSP responder certificate can forge OCSP responses that Erlang/OTP accepts as valid.
This affects TLS clients using OCSP stapling via the ssl application: a malicious or compromised server can present a revoked TLS certificate together with a forged OCSP response signed by an expired responder key, and the client will accept the revoked certificate as valid. It also affects applications calling public_key:pkix_ocsp_validate/5 directly, where the impact depends on the use case — server-side client certificate validation using this API may allow authentication bypass with a revoked client certificate.
This issue affects OTP from OTP 27.0 before OTP 27.3.4.12, 28.5.0.1, and 29.0.1 corresponding to public_key from 1.16 before 1.17.1.3, 1.20.3.1, and 1.21.1.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
Assigner
References
6 references
| URL | Tags |
|---|---|
| https://github.com/erlang/otp/security/advisories… | vendor-advisoryrelated |
| https://cna.erlef.org/cves/CVE-2026-42791.html | related |
| https://osv.dev/vulnerability/EEF-CVE-2026-42791 | related |
| https://www.erlang.org/doc/system/versions.html#o… | x_version-scheme |
| https://github.com/erlang/otp/commit/7995f1fdaee3… | patch |
| https://github.com/erlang/otp/commit/b3870e02405c… | patch |
Impacted products
Credits
Jakub Witczak
Ingela Anderton Andin
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-42791",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-05-27T15:40:27.647844Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-05-27T15:40:49.123Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"cpes": [
"cpe:2.3:a:erlang:erlang\\/otp:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"modules": [
"pubkey_ocsp"
],
"packageName": "public_key",
"packageURL": "pkg:otp/public_key?repository_url=https:%2F%2Fgithub.com%2Ferlang%2Fotp\u0026vcs_url=git%20https:%2F%2Fgithub.com%2Ferlang%2Fotp.git",
"product": "OTP",
"programFiles": [
"src/pubkey_ocsp.erl"
],
"programRoutines": [
{
"name": "pubkey_ocsp:verify_response/5"
},
{
"name": "pubkey_ocsp:is_authorized_responder/3"
}
],
"repo": "https://github.com/erlang/otp",
"vendor": "Erlang",
"versions": [
{
"changes": [
{
"at": "1.17.1.3",
"status": "unaffected"
},
{
"at": "1.20.3.1",
"status": "unaffected"
},
{
"at": "1.21.1",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "1.16",
"versionType": "otp"
}
]
},
{
"collectionURL": "https://github.com",
"cpes": [
"cpe:2.3:a:erlang:erlang\\/otp:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"modules": [
"pubkey_ocsp"
],
"packageName": "erlang/otp",
"packageURL": "pkg:github/erlang/otp",
"product": "OTP",
"programFiles": [
"lib/public_key/src/pubkey_ocsp.erl"
],
"programRoutines": [
{
"name": "pubkey_ocsp:verify_response/5"
},
{
"name": "pubkey_ocsp:is_authorized_responder/3"
}
],
"repo": "https://github.com/erlang/otp",
"vendor": "Erlang",
"versions": [
{
"changes": [
{
"at": "27.3.4.12",
"status": "unaffected"
},
{
"at": "28.5.0.1",
"status": "unaffected"
},
{
"at": "29.0.1",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "27.0",
"versionType": "otp"
},
{
"changes": [
{
"at": "7995f1fdaee3da569bb810358ce0f546471d169b",
"status": "unaffected"
},
{
"at": "b3870e02405c709a872b01ba6086065620cdfe76",
"status": "unaffected"
}
],
"lessThan": "*",
"status": "affected",
"version": "2b1a742c651b90f8a7a1fb2ddde73f29915ea376",
"versionType": "git"
}
]
}
],
"configurations": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "For the \u003ctt\u003essl\u003c/tt\u003e application, OCSP stapling must be enabled by setting the \u003ctt\u003estapling\u003c/tt\u003e option to \u003ctt\u003estaple\u003c/tt\u003e in the TLS client options. OCSP stapling is not enabled by default.\u003cp\u003eApplications calling \u003ctt\u003epublic_key:pkix_ocsp_validate/5\u003c/tt\u003e directly are unconditionally affected when that function is used.\u003c/p\u003e"
}
],
"value": "For the ssl application, OCSP stapling must be enabled by setting the stapling option to staple in the TLS client options. OCSP stapling is not enabled by default.\n\nApplications calling public_key:pkix_ocsp_validate/5 directly are unconditionally affected when that function is used."
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:erlang:erlang\\/otp:*:*:*:*:*:*:*:*",
"versionEndExcluding": "27.3.4.12",
"versionStartIncluding": "27.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:erlang:erlang\\/otp:*:*:*:*:*:*:*:*",
"versionEndExcluding": "28.5.0.1",
"versionStartIncluding": "28.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:erlang:erlang\\/otp:*:*:*:*:*:*:*:*",
"versionEndExcluding": "29.0.1",
"versionStartIncluding": "29.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"credits": [
{
"lang": "en",
"type": "remediation developer",
"value": "Jakub Witczak"
},
{
"lang": "en",
"type": "remediation reviewer",
"value": "Ingela Anderton Andin"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Improper Certificate Validation vulnerability in Erlang OTP \u003ctt\u003epublic_key\u003c/tt\u003e (\u003ctt\u003epubkey_ocsp\u003c/tt\u003e module) allows forged OCSP responses signed with an expired responder certificate to be accepted as valid.\u003cp\u003eOCSP response verification in \u003ctt\u003epubkey_ocsp:verify_response/5\u003c/tt\u003e and \u003ctt\u003epubkey_ocsp:is_authorized_responder/3\u003c/tt\u003e in \u003ctt\u003elib/public_key/src/pubkey_ocsp.erl\u003c/tt\u003e does not check the validity period (\u003ctt\u003enotBefore\u003c/tt\u003e/\u003ctt\u003enotAfter\u003c/tt\u003e) of the OCSP responder certificate. An attacker who has obtained the private key of an expired CA-designated OCSP responder certificate can forge OCSP responses that Erlang/OTP accepts as valid.\u003c/p\u003e\u003cp\u003eThis affects TLS clients using OCSP stapling via the \u003ctt\u003essl\u003c/tt\u003e application: a malicious or compromised server can present a revoked TLS certificate together with a forged OCSP response signed by an expired responder key, and the client will accept the revoked certificate as valid. It also affects applications calling \u003ctt\u003epublic_key:pkix_ocsp_validate/5\u003c/tt\u003e directly, where the impact depends on the use case \u2014 server-side client certificate validation using this API may allow authentication bypass with a revoked client certificate.\u003c/p\u003e\u003cp\u003eThis issue affects OTP from OTP 27.0 before OTP 27.3.4.12, 28.5.0.1, and 29.0.1 corresponding to \u003ctt\u003epublic_key\u003c/tt\u003e from 1.16 before 1.17.1.3, 1.20.3.1, and 1.21.1.\u003c/p\u003e"
}
],
"value": "Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows forged OCSP responses signed with an expired responder certificate to be accepted as valid.\n\nOCSP response verification in pubkey_ocsp:verify_response/5 and pubkey_ocsp:is_authorized_responder/3 in lib/public_key/src/pubkey_ocsp.erl does not check the validity period (notBefore/notAfter) of the OCSP responder certificate. An attacker who has obtained the private key of an expired CA-designated OCSP responder certificate can forge OCSP responses that Erlang/OTP accepts as valid.\n\nThis affects TLS clients using OCSP stapling via the ssl application: a malicious or compromised server can present a revoked TLS certificate together with a forged OCSP response signed by an expired responder key, and the client will accept the revoked certificate as valid. It also affects applications calling public_key:pkix_ocsp_validate/5 directly, where the impact depends on the use case \u2014 server-side client certificate validation using this API may allow authentication bypass with a revoked client certificate.\n\nThis issue affects OTP from OTP 27.0 before OTP 27.3.4.12, 28.5.0.1, and 29.0.1 corresponding to public_key from 1.16 before 1.17.1.3, 1.20.3.1, and 1.21.1."
}
],
"impacts": [
{
"capecId": "CAPEC-475",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-475 Signature Spoofing by Improper Validation"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"attackComplexity": "HIGH",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"privilegesRequired": "NONE",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "LOW",
"subIntegrityImpact": "LOW",
"userInteraction": "NONE",
"vectorString": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "LOW"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-295",
"description": "CWE-295 Improper Certificate Validation",
"lang": "en",
"type": "CWE"
},
{
"cweId": "CWE-672",
"description": "CWE-672 Operation on a Resource after Expiration or Release",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-05-27T15:41:07.758Z",
"orgId": "6b3ad84c-e1a6-4bf7-a703-f496b71e49db",
"shortName": "EEF"
},
"references": [
{
"tags": [
"vendor-advisory",
"related"
],
"url": "https://github.com/erlang/otp/security/advisories/GHSA-cjxj-wj6x-3fff"
},
{
"tags": [
"related"
],
"url": "https://cna.erlef.org/cves/CVE-2026-42791.html"
},
{
"tags": [
"related"
],
"url": "https://osv.dev/vulnerability/EEF-CVE-2026-42791"
},
{
"tags": [
"x_version-scheme"
],
"url": "https://www.erlang.org/doc/system/versions.html#order-of-versions"
},
{
"tags": [
"patch"
],
"url": "https://github.com/erlang/otp/commit/7995f1fdaee3da569bb810358ce0f546471d169b"
},
{
"tags": [
"patch"
],
"url": "https://github.com/erlang/otp/commit/b3870e02405c709a872b01ba6086065620cdfe76"
}
],
"source": {
"discovery": "INTERNAL"
},
"title": "OCSP responder certificate validity period not checked in public_key",
"workarounds": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cul\u003e\u003cli\u003eFor TLS clients using the \u003ctt\u003essl\u003c/tt\u003e application, disable OCSP stapling by setting \u003ctt\u003e{stapling, no_staple}\u003c/tt\u003e in the client options, or switch to CRL-based revocation checking with \u003ctt\u003e{crl_check, true}\u003c/tt\u003e.\u003c/li\u003e\u003cli\u003eFor applications calling \u003ctt\u003epublic_key:pkix_ocsp_validate/5\u003c/tt\u003e directly, validate the responder certificate\u0027s validity period in application code before calling the function.\u003c/li\u003e\u003c/ul\u003e"
}
],
"value": "* For TLS clients using the ssl application, disable OCSP stapling by setting {stapling, no_staple} in the client options, or switch to CRL-based revocation checking with {crl_check, true}.\n* For applications calling public_key:pkix_ocsp_validate/5 directly, validate the responder certificate\u0027s validity period in application code before calling the function."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "6b3ad84c-e1a6-4bf7-a703-f496b71e49db",
"assignerShortName": "EEF",
"cveId": "CVE-2026-42791",
"datePublished": "2026-05-27T12:23:13.584Z",
"dateReserved": "2026-04-29T18:06:33.251Z",
"dateUpdated": "2026-05-27T15:41:07.758Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-42791",
"date": "2026-06-13",
"epss": "0.00051",
"percentile": "0.16622"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-42791\",\"sourceIdentifier\":\"6b3ad84c-e1a6-4bf7-a703-f496b71e49db\",\"published\":\"2026-05-27T14:16:53.460\",\"lastModified\":\"2026-06-02T19:18:00.350\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows forged OCSP responses signed with an expired responder certificate to be accepted as valid.\\n\\nOCSP response verification in pubkey_ocsp:verify_response/5 and pubkey_ocsp:is_authorized_responder/3 in lib/public_key/src/pubkey_ocsp.erl does not check the validity period (notBefore/notAfter) of the OCSP responder certificate. An attacker who has obtained the private key of an expired CA-designated OCSP responder certificate can forge OCSP responses that Erlang/OTP accepts as valid.\\n\\nThis affects TLS clients using OCSP stapling via the ssl application: a malicious or compromised server can present a revoked TLS certificate together with a forged OCSP response signed by an expired responder key, and the client will accept the revoked certificate as valid. It also affects applications calling public_key:pkix_ocsp_validate/5 directly, where the impact depends on the use case \u2014 server-side client certificate validation using this API may allow authentication bypass with a revoked client certificate.\\n\\nThis issue affects OTP from OTP 27.0 before OTP 27.3.4.12, 28.5.0.1, and 29.0.1 corresponding to public_key from 1.16 before 1.17.1.3, 1.20.3.1, and 1.21.1.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"6b3ad84c-e1a6-4bf7-a703-f496b71e49db\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":6.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"attackRequirements\":\"PRESENT\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"NONE\",\"vulnIntegrityImpact\":\"LOW\",\"vulnAvailabilityImpact\":\"NONE\",\"subConfidentialityImpact\":\"LOW\",\"subIntegrityImpact\":\"LOW\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}],\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N\",\"baseScore\":3.7,\"baseSeverity\":\"LOW\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.2,\"impactScore\":1.4}]},\"weaknesses\":[{\"source\":\"6b3ad84c-e1a6-4bf7-a703-f496b71e49db\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-295\"},{\"lang\":\"en\",\"value\":\"CWE-672\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:erlang:erlang\\\\/otp:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"27.0\",\"versionEndExcluding\":\"27.3.4.12\",\"matchCriteriaId\":\"91269F6D-B8A3-41F2-871C-79EBB9460BE8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:erlang:erlang\\\\/otp:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"28.0\",\"versionEndExcluding\":\"28.5.0.1\",\"matchCriteriaId\":\"844A3F01-AF3C-4C48-81DB-932B803D22C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:erlang:erlang\\\\/otp:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"29.0\",\"versionEndExcluding\":\"29.0.1\",\"matchCriteriaId\":\"46976598-817C-4E93-AC4B-46434746C25F\"}]}]}],\"references\":[{\"url\":\"https://cna.erlef.org/cves/CVE-2026-42791.html\",\"source\":\"6b3ad84c-e1a6-4bf7-a703-f496b71e49db\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/erlang/otp/commit/7995f1fdaee3da569bb810358ce0f546471d169b\",\"source\":\"6b3ad84c-e1a6-4bf7-a703-f496b71e49db\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/erlang/otp/commit/b3870e02405c709a872b01ba6086065620cdfe76\",\"source\":\"6b3ad84c-e1a6-4bf7-a703-f496b71e49db\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/erlang/otp/security/advisories/GHSA-cjxj-wj6x-3fff\",\"source\":\"6b3ad84c-e1a6-4bf7-a703-f496b71e49db\",\"tags\":[\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://osv.dev/vulnerability/EEF-CVE-2026-42791\",\"source\":\"6b3ad84c-e1a6-4bf7-a703-f496b71e49db\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.erlang.org/doc/system/versions.html#order-of-versions\",\"source\":\"6b3ad84c-e1a6-4bf7-a703-f496b71e49db\",\"tags\":[\"Product\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-42791\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-05-27T15:40:27.647844Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-05-27T15:40:33.572Z\"}}], \"cna\": {\"title\": \"OCSP responder certificate validity period not checked in public_key\", \"source\": {\"discovery\": \"INTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"remediation developer\", \"value\": \"Jakub Witczak\"}, {\"lang\": \"en\", \"type\": \"remediation reviewer\", \"value\": \"Ingela Anderton Andin\"}], \"impacts\": [{\"capecId\": \"CAPEC-475\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-475 Signature Spoofing by Improper Validation\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV4_0\": {\"version\": \"4.0\", \"baseScore\": 6.3, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"attackRequirements\": \"PRESENT\", \"privilegesRequired\": \"NONE\", \"subIntegrityImpact\": \"LOW\", \"vulnIntegrityImpact\": \"LOW\", \"subAvailabilityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"NONE\", \"subConfidentialityImpact\": \"LOW\", \"vulnConfidentialityImpact\": \"NONE\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:erlang:erlang\\\\/otp:*:*:*:*:*:*:*:*\"], \"repo\": \"https://github.com/erlang/otp\", \"vendor\": \"Erlang\", \"modules\": [\"pubkey_ocsp\"], \"product\": \"OTP\", \"versions\": [{\"status\": \"affected\", \"changes\": [{\"at\": \"1.17.1.3\", \"status\": \"unaffected\"}, {\"at\": \"1.20.3.1\", \"status\": \"unaffected\"}, {\"at\": \"1.21.1\", \"status\": \"unaffected\"}], \"version\": \"1.16\", \"lessThan\": \"*\", \"versionType\": \"otp\"}], \"packageURL\": \"pkg:otp/public_key?repository_url=https:%2F%2Fgithub.com%2Ferlang%2Fotp\u0026vcs_url=git%20https:%2F%2Fgithub.com%2Ferlang%2Fotp.git\", \"packageName\": \"public_key\", \"programFiles\": [\"src/pubkey_ocsp.erl\"], \"defaultStatus\": \"unknown\", \"programRoutines\": [{\"name\": \"pubkey_ocsp:verify_response/5\"}, {\"name\": \"pubkey_ocsp:is_authorized_responder/3\"}]}, {\"cpes\": [\"cpe:2.3:a:erlang:erlang\\\\/otp:*:*:*:*:*:*:*:*\"], \"repo\": \"https://github.com/erlang/otp\", \"vendor\": \"Erlang\", \"modules\": [\"pubkey_ocsp\"], \"product\": \"OTP\", \"versions\": [{\"status\": \"affected\", \"changes\": [{\"at\": \"27.3.4.12\", \"status\": \"unaffected\"}, {\"at\": \"28.5.0.1\", \"status\": \"unaffected\"}, {\"at\": \"29.0.1\", \"status\": \"unaffected\"}], \"version\": \"27.0\", \"lessThan\": \"*\", \"versionType\": \"otp\"}, {\"status\": \"affected\", \"changes\": [{\"at\": \"7995f1fdaee3da569bb810358ce0f546471d169b\", \"status\": \"unaffected\"}, {\"at\": \"b3870e02405c709a872b01ba6086065620cdfe76\", \"status\": \"unaffected\"}], \"version\": \"2b1a742c651b90f8a7a1fb2ddde73f29915ea376\", \"lessThan\": \"*\", \"versionType\": \"git\"}], \"packageURL\": \"pkg:github/erlang/otp\", \"packageName\": \"erlang/otp\", \"programFiles\": [\"lib/public_key/src/pubkey_ocsp.erl\"], \"collectionURL\": \"https://github.com\", \"defaultStatus\": \"unknown\", \"programRoutines\": [{\"name\": \"pubkey_ocsp:verify_response/5\"}, {\"name\": \"pubkey_ocsp:is_authorized_responder/3\"}]}], \"references\": [{\"url\": \"https://github.com/erlang/otp/security/advisories/GHSA-cjxj-wj6x-3fff\", \"tags\": [\"vendor-advisory\", \"related\"]}, {\"url\": \"https://cna.erlef.org/cves/CVE-2026-42791.html\", \"tags\": [\"related\"]}, {\"url\": \"https://osv.dev/vulnerability/EEF-CVE-2026-42791\", \"tags\": [\"related\"]}, {\"url\": \"https://www.erlang.org/doc/system/versions.html#order-of-versions\", \"tags\": [\"x_version-scheme\"]}, {\"url\": \"https://github.com/erlang/otp/commit/7995f1fdaee3da569bb810358ce0f546471d169b\", \"tags\": [\"patch\"]}, {\"url\": \"https://github.com/erlang/otp/commit/b3870e02405c709a872b01ba6086065620cdfe76\", \"tags\": [\"patch\"]}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"* For TLS clients using the ssl application, disable OCSP stapling by setting {stapling, no_staple} in the client options, or switch to CRL-based revocation checking with {crl_check, true}.\\n* For applications calling public_key:pkix_ocsp_validate/5 directly, validate the responder certificate\u0027s validity period in application code before calling the function.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cul\u003e\u003cli\u003eFor TLS clients using the \u003ctt\u003essl\u003c/tt\u003e application, disable OCSP stapling by setting \u003ctt\u003e{stapling, no_staple}\u003c/tt\u003e in the client options, or switch to CRL-based revocation checking with \u003ctt\u003e{crl_check, true}\u003c/tt\u003e.\u003c/li\u003e\u003cli\u003eFor applications calling \u003ctt\u003epublic_key:pkix_ocsp_validate/5\u003c/tt\u003e directly, validate the responder certificate\u0027s validity period in application code before calling the function.\u003c/li\u003e\u003c/ul\u003e\", \"base64\": false}]}], \"x_generator\": {\"engine\": \"cvelib 1.8.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows forged OCSP responses signed with an expired responder certificate to be accepted as valid.\\n\\nOCSP response verification in pubkey_ocsp:verify_response/5 and pubkey_ocsp:is_authorized_responder/3 in lib/public_key/src/pubkey_ocsp.erl does not check the validity period (notBefore/notAfter) of the OCSP responder certificate. An attacker who has obtained the private key of an expired CA-designated OCSP responder certificate can forge OCSP responses that Erlang/OTP accepts as valid.\\n\\nThis affects TLS clients using OCSP stapling via the ssl application: a malicious or compromised server can present a revoked TLS certificate together with a forged OCSP response signed by an expired responder key, and the client will accept the revoked certificate as valid. It also affects applications calling public_key:pkix_ocsp_validate/5 directly, where the impact depends on the use case \\u2014 server-side client certificate validation using this API may allow authentication bypass with a revoked client certificate.\\n\\nThis issue affects OTP from OTP 27.0 before OTP 27.3.4.12, 28.5.0.1, and 29.0.1 corresponding to public_key from 1.16 before 1.17.1.3, 1.20.3.1, and 1.21.1.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Improper Certificate Validation vulnerability in Erlang OTP \u003ctt\u003epublic_key\u003c/tt\u003e (\u003ctt\u003epubkey_ocsp\u003c/tt\u003e module) allows forged OCSP responses signed with an expired responder certificate to be accepted as valid.\u003cp\u003eOCSP response verification in \u003ctt\u003epubkey_ocsp:verify_response/5\u003c/tt\u003e and \u003ctt\u003epubkey_ocsp:is_authorized_responder/3\u003c/tt\u003e in \u003ctt\u003elib/public_key/src/pubkey_ocsp.erl\u003c/tt\u003e does not check the validity period (\u003ctt\u003enotBefore\u003c/tt\u003e/\u003ctt\u003enotAfter\u003c/tt\u003e) of the OCSP responder certificate. An attacker who has obtained the private key of an expired CA-designated OCSP responder certificate can forge OCSP responses that Erlang/OTP accepts as valid.\u003c/p\u003e\u003cp\u003eThis affects TLS clients using OCSP stapling via the \u003ctt\u003essl\u003c/tt\u003e application: a malicious or compromised server can present a revoked TLS certificate together with a forged OCSP response signed by an expired responder key, and the client will accept the revoked certificate as valid. It also affects applications calling \u003ctt\u003epublic_key:pkix_ocsp_validate/5\u003c/tt\u003e directly, where the impact depends on the use case \\u2014 server-side client certificate validation using this API may allow authentication bypass with a revoked client certificate.\u003c/p\u003e\u003cp\u003eThis issue affects OTP from OTP 27.0 before OTP 27.3.4.12, 28.5.0.1, and 29.0.1 corresponding to \u003ctt\u003epublic_key\u003c/tt\u003e from 1.16 before 1.17.1.3, 1.20.3.1, and 1.21.1.\u003c/p\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-295\", \"description\": \"CWE-295 Improper Certificate Validation\"}, {\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-672\", \"description\": \"CWE-672 Operation on a Resource after Expiration or Release\"}]}], \"configurations\": [{\"lang\": \"en\", \"value\": \"For the ssl application, OCSP stapling must be enabled by setting the stapling option to staple in the TLS client options. OCSP stapling is not enabled by default.\\n\\nApplications calling public_key:pkix_ocsp_validate/5 directly are unconditionally affected when that function is used.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"For the \u003ctt\u003essl\u003c/tt\u003e application, OCSP stapling must be enabled by setting the \u003ctt\u003estapling\u003c/tt\u003e option to \u003ctt\u003estaple\u003c/tt\u003e in the TLS client options. OCSP stapling is not enabled by default.\u003cp\u003eApplications calling \u003ctt\u003epublic_key:pkix_ocsp_validate/5\u003c/tt\u003e directly are unconditionally affected when that function is used.\u003c/p\u003e\", \"base64\": false}]}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:a:erlang:erlang\\\\/otp:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"27.3.4.12\", \"versionStartIncluding\": \"27.0\"}, {\"criteria\": \"cpe:2.3:a:erlang:erlang\\\\/otp:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"28.5.0.1\", \"versionStartIncluding\": \"28.0\"}, {\"criteria\": \"cpe:2.3:a:erlang:erlang\\\\/otp:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"29.0.1\", \"versionStartIncluding\": \"29.0\"}], \"operator\": \"OR\"}], \"operator\": \"AND\"}], \"providerMetadata\": {\"orgId\": \"6b3ad84c-e1a6-4bf7-a703-f496b71e49db\", \"shortName\": \"EEF\", \"dateUpdated\": \"2026-05-27T15:41:07.758Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-42791\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-05-27T15:41:07.758Z\", \"dateReserved\": \"2026-04-29T18:06:33.251Z\", \"assignerOrgId\": \"6b3ad84c-e1a6-4bf7-a703-f496b71e49db\", \"datePublished\": \"2026-05-27T12:23:13.584Z\", \"assignerShortName\": \"EEF\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
FKIE_CVE-2026-42791
Vulnerability from fkie_nvd - Published: 2026-05-27 14:16 - Updated: 2026-06-02 19:18
Severity
Summary
Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows forged OCSP responses signed with an expired responder certificate to be accepted as valid.
OCSP response verification in pubkey_ocsp:verify_response/5 and pubkey_ocsp:is_authorized_responder/3 in lib/public_key/src/pubkey_ocsp.erl does not check the validity period (notBefore/notAfter) of the OCSP responder certificate. An attacker who has obtained the private key of an expired CA-designated OCSP responder certificate can forge OCSP responses that Erlang/OTP accepts as valid.
This affects TLS clients using OCSP stapling via the ssl application: a malicious or compromised server can present a revoked TLS certificate together with a forged OCSP response signed by an expired responder key, and the client will accept the revoked certificate as valid. It also affects applications calling public_key:pkix_ocsp_validate/5 directly, where the impact depends on the use case — server-side client certificate validation using this API may allow authentication bypass with a revoked client certificate.
This issue affects OTP from OTP 27.0 before OTP 27.3.4.12, 28.5.0.1, and 29.0.1 corresponding to public_key from 1.16 before 1.17.1.3, 1.20.3.1, and 1.21.1.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| erlang | erlang\/otp | * | |
| erlang | erlang\/otp | * | |
| erlang | erlang\/otp | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:erlang:erlang\\/otp:*:*:*:*:*:*:*:*",
"matchCriteriaId": "91269F6D-B8A3-41F2-871C-79EBB9460BE8",
"versionEndExcluding": "27.3.4.12",
"versionStartIncluding": "27.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:erlang:erlang\\/otp:*:*:*:*:*:*:*:*",
"matchCriteriaId": "844A3F01-AF3C-4C48-81DB-932B803D22C4",
"versionEndExcluding": "28.5.0.1",
"versionStartIncluding": "28.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:erlang:erlang\\/otp:*:*:*:*:*:*:*:*",
"matchCriteriaId": "46976598-817C-4E93-AC4B-46434746C25F",
"versionEndExcluding": "29.0.1",
"versionStartIncluding": "29.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows forged OCSP responses signed with an expired responder certificate to be accepted as valid.\n\nOCSP response verification in pubkey_ocsp:verify_response/5 and pubkey_ocsp:is_authorized_responder/3 in lib/public_key/src/pubkey_ocsp.erl does not check the validity period (notBefore/notAfter) of the OCSP responder certificate. An attacker who has obtained the private key of an expired CA-designated OCSP responder certificate can forge OCSP responses that Erlang/OTP accepts as valid.\n\nThis affects TLS clients using OCSP stapling via the ssl application: a malicious or compromised server can present a revoked TLS certificate together with a forged OCSP response signed by an expired responder key, and the client will accept the revoked certificate as valid. It also affects applications calling public_key:pkix_ocsp_validate/5 directly, where the impact depends on the use case \u2014 server-side client certificate validation using this API may allow authentication bypass with a revoked client certificate.\n\nThis issue affects OTP from OTP 27.0 before OTP 27.3.4.12, 28.5.0.1, and 29.0.1 corresponding to public_key from 1.16 before 1.17.1.3, 1.20.3.1, and 1.21.1."
}
],
"id": "CVE-2026-42791",
"lastModified": "2026-06-02T19:18:00.350",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.2,
"impactScore": 1.4,
"source": "nvd@nist.gov",
"type": "Primary"
}
],
"cvssMetricV40": [
{
"cvssData": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "HIGH",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"availabilityRequirement": "NOT_DEFINED",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityRequirement": "NOT_DEFINED",
"exploitMaturity": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"privilegesRequired": "NONE",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "LOW",
"subIntegrityImpact": "LOW",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "LOW",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"source": "6b3ad84c-e1a6-4bf7-a703-f496b71e49db",
"type": "Secondary"
}
]
},
"published": "2026-05-27T14:16:53.460",
"references": [
{
"source": "6b3ad84c-e1a6-4bf7-a703-f496b71e49db",
"tags": [
"Third Party Advisory"
],
"url": "https://cna.erlef.org/cves/CVE-2026-42791.html"
},
{
"source": "6b3ad84c-e1a6-4bf7-a703-f496b71e49db",
"tags": [
"Patch"
],
"url": "https://github.com/erlang/otp/commit/7995f1fdaee3da569bb810358ce0f546471d169b"
},
{
"source": "6b3ad84c-e1a6-4bf7-a703-f496b71e49db",
"tags": [
"Patch"
],
"url": "https://github.com/erlang/otp/commit/b3870e02405c709a872b01ba6086065620cdfe76"
},
{
"source": "6b3ad84c-e1a6-4bf7-a703-f496b71e49db",
"tags": [
"Mitigation",
"Vendor Advisory"
],
"url": "https://github.com/erlang/otp/security/advisories/GHSA-cjxj-wj6x-3fff"
},
{
"source": "6b3ad84c-e1a6-4bf7-a703-f496b71e49db",
"tags": [
"Third Party Advisory"
],
"url": "https://osv.dev/vulnerability/EEF-CVE-2026-42791"
},
{
"source": "6b3ad84c-e1a6-4bf7-a703-f496b71e49db",
"tags": [
"Product"
],
"url": "https://www.erlang.org/doc/system/versions.html#order-of-versions"
}
],
"sourceIdentifier": "6b3ad84c-e1a6-4bf7-a703-f496b71e49db",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-295"
},
{
"lang": "en",
"value": "CWE-672"
}
],
"source": "6b3ad84c-e1a6-4bf7-a703-f496b71e49db",
"type": "Secondary"
}
]
}
OPENSUSE-SU-2026:20907-1
Vulnerability from csaf_opensuse - Published: 2026-06-05 11:01 - Updated: 2026-06-05 11:01Summary
Security update for erlang
Severity
Important
Notes
Title of the patch: Security update for erlang
Description of the patch: This update for erlang fixes the following issues
- CVE-2025-4748: improper limitation of a pathname may lead to path traversal (bsc#1244642).
- CVE-2026-32147: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in SFTP chroot
(bsc#1262503).
- CVE-2026-42789: `public_key` application accepts non-CA certificates as intermediate issuers and this enables chain
forgery (bsc#1266449).
- CVE-2026-42790: Name Constraints and Subject CommonName fallback in TLS hostname verification allows for certificate
forgery by MITM attacker (bsc#1266466).
- CVE-2026-42791: OCSP response verification in the `public_key` application does not check the validity period of the
OCSP responder certificate and allows for OCSP response response forgery (bsc#1266448).
Patchnames: openSUSE-Leap-16.0-892
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.4 (Medium)
Affected products
Recommended
79 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.3 (Medium)
Affected products
Recommended
79 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.4 (High)
Affected products
Recommended
79 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
79 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
79 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
22 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for erlang",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for erlang fixes the following issues\n\n- CVE-2025-4748: improper limitation of a pathname may lead to path traversal (bsc#1244642).\n- CVE-2026-32147: Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027) in SFTP chroot\n (bsc#1262503).\n- CVE-2026-42789: `public_key` application accepts non-CA certificates as intermediate issuers and this enables chain\n forgery (bsc#1266449).\n- CVE-2026-42790: Name Constraints and Subject CommonName fallback in TLS hostname verification allows for certificate\n forgery by MITM attacker (bsc#1266466).\n- CVE-2026-42791: OCSP response verification in the `public_key` application does not check the validity period of the\n OCSP responder certificate and allows for OCSP response response forgery (bsc#1266448).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Leap-16.0-892",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_20907-1.json"
},
{
"category": "self",
"summary": "SUSE Bug 1244642",
"url": "https://bugzilla.suse.com/1244642"
},
{
"category": "self",
"summary": "SUSE Bug 1262503",
"url": "https://bugzilla.suse.com/1262503"
},
{
"category": "self",
"summary": "SUSE Bug 1266448",
"url": "https://bugzilla.suse.com/1266448"
},
{
"category": "self",
"summary": "SUSE Bug 1266449",
"url": "https://bugzilla.suse.com/1266449"
},
{
"category": "self",
"summary": "SUSE Bug 1266466",
"url": "https://bugzilla.suse.com/1266466"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-4748 page",
"url": "https://www.suse.com/security/cve/CVE-2025-4748/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32147 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42789 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42790 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42790/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42791 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42791/"
}
],
"title": "Security update for erlang",
"tracking": {
"current_release_date": "2026-06-05T11:01:03Z",
"generator": {
"date": "2026-06-05T11:01:03Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:20907-1",
"initial_release_date": "2026-06-05T11:01:03Z",
"revision_history": [
{
"date": "2026-06-05T11:01:03Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "erlang-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-debugger-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-debugger-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-debugger-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-debugger-src-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-dialyzer-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-dialyzer-src-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-diameter-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-diameter-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-diameter-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-diameter-src-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-doc-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-doc-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-doc-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-epmd-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-epmd-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-epmd-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-et-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-et-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-et-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-et-src-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-et-src-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-et-src-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-jinterface-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-jinterface-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-jinterface-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-jinterface-src-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-observer-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-observer-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-observer-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-observer-src-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-observer-src-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-observer-src-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-reltool-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-reltool-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-reltool-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-reltool-src-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-src-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-src-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-src-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-wx-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-wx-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-wx-27.1.3-160000.5.1.aarch64"
}
},
{
"category": "product_version",
"name": "erlang-wx-src-27.1.3-160000.5.1.aarch64",
"product": {
"name": "erlang-wx-src-27.1.3-160000.5.1.aarch64",
"product_id": "erlang-wx-src-27.1.3-160000.5.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "erlang-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-debugger-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-debugger-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-debugger-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-debugger-src-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-dialyzer-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-diameter-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-diameter-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-diameter-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-diameter-src-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-doc-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-doc-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-doc-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-epmd-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-epmd-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-epmd-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-et-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-et-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-et-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-et-src-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-et-src-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-et-src-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-jinterface-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-jinterface-src-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-observer-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-observer-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-observer-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-observer-src-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-reltool-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-reltool-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-reltool-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-reltool-src-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-src-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-src-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-src-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-wx-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-wx-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-wx-27.1.3-160000.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"product": {
"name": "erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"product_id": "erlang-wx-src-27.1.3-160000.5.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "erlang-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-27.1.3-160000.5.1.s390x",
"product_id": "erlang-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-debugger-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-debugger-27.1.3-160000.5.1.s390x",
"product_id": "erlang-debugger-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-debugger-src-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-debugger-src-27.1.3-160000.5.1.s390x",
"product_id": "erlang-debugger-src-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-dialyzer-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-dialyzer-27.1.3-160000.5.1.s390x",
"product_id": "erlang-dialyzer-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"product_id": "erlang-dialyzer-src-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-diameter-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-diameter-27.1.3-160000.5.1.s390x",
"product_id": "erlang-diameter-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-diameter-src-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-diameter-src-27.1.3-160000.5.1.s390x",
"product_id": "erlang-diameter-src-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-epmd-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-epmd-27.1.3-160000.5.1.s390x",
"product_id": "erlang-epmd-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-et-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-et-27.1.3-160000.5.1.s390x",
"product_id": "erlang-et-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-et-src-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-et-src-27.1.3-160000.5.1.s390x",
"product_id": "erlang-et-src-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-jinterface-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-jinterface-27.1.3-160000.5.1.s390x",
"product_id": "erlang-jinterface-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"product_id": "erlang-jinterface-src-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-observer-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-observer-27.1.3-160000.5.1.s390x",
"product_id": "erlang-observer-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-observer-src-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-observer-src-27.1.3-160000.5.1.s390x",
"product_id": "erlang-observer-src-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-reltool-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-reltool-27.1.3-160000.5.1.s390x",
"product_id": "erlang-reltool-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-reltool-src-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-reltool-src-27.1.3-160000.5.1.s390x",
"product_id": "erlang-reltool-src-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-src-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-src-27.1.3-160000.5.1.s390x",
"product_id": "erlang-src-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-wx-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-wx-27.1.3-160000.5.1.s390x",
"product_id": "erlang-wx-27.1.3-160000.5.1.s390x"
}
},
{
"category": "product_version",
"name": "erlang-wx-src-27.1.3-160000.5.1.s390x",
"product": {
"name": "erlang-wx-src-27.1.3-160000.5.1.s390x",
"product_id": "erlang-wx-src-27.1.3-160000.5.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "erlang-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-debugger-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-debugger-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-debugger-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-debugger-src-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-dialyzer-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-dialyzer-src-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-diameter-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-diameter-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-diameter-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-diameter-src-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-doc-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-doc-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-doc-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-epmd-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-epmd-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-epmd-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-et-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-et-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-et-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-et-src-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-et-src-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-et-src-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-jinterface-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-jinterface-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-jinterface-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-jinterface-src-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-observer-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-observer-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-observer-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-observer-src-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-observer-src-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-observer-src-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-reltool-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-reltool-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-reltool-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-reltool-src-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-src-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-src-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-src-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-wx-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-wx-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-wx-27.1.3-160000.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "erlang-wx-src-27.1.3-160000.5.1.x86_64",
"product": {
"name": "erlang-wx-src-27.1.3-160000.5.1.x86_64",
"product_id": "erlang-wx-src-27.1.3-160000.5.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 16.0",
"product": {
"name": "openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-debugger-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-debugger-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-debugger-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-debugger-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-debugger-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-debugger-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-debugger-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-debugger-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-debugger-src-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-debugger-src-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-debugger-src-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-debugger-src-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-debugger-src-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-dialyzer-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-dialyzer-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-dialyzer-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-dialyzer-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-dialyzer-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-dialyzer-src-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-dialyzer-src-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-dialyzer-src-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-diameter-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-diameter-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-diameter-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-diameter-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-diameter-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-diameter-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-diameter-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-diameter-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-diameter-src-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-diameter-src-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-diameter-src-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-diameter-src-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-diameter-src-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-doc-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-doc-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-doc-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-doc-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-doc-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-doc-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-epmd-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-epmd-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-epmd-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-epmd-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-epmd-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-epmd-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-epmd-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-epmd-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-et-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-et-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-et-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-et-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-et-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-et-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-et-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-et-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-et-src-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-et-src-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-et-src-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-et-src-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-et-src-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-et-src-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-et-src-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-et-src-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-jinterface-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-jinterface-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-jinterface-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-jinterface-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-jinterface-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-jinterface-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-jinterface-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-jinterface-src-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-jinterface-src-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-jinterface-src-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-jinterface-src-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-observer-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-observer-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-observer-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-observer-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-observer-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-observer-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-observer-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-observer-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-observer-src-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-observer-src-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-observer-src-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-observer-src-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-observer-src-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-observer-src-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-observer-src-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-reltool-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-reltool-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-reltool-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-reltool-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-reltool-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-reltool-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-reltool-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-reltool-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-reltool-src-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-reltool-src-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-reltool-src-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-reltool-src-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-reltool-src-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-src-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-src-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-src-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-src-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-src-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-src-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-src-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-src-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-wx-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-wx-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-wx-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-wx-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-wx-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-wx-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-wx-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-wx-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-wx-src-27.1.3-160000.5.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64"
},
"product_reference": "erlang-wx-src-27.1.3-160000.5.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-wx-src-27.1.3-160000.5.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le"
},
"product_reference": "erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-wx-src-27.1.3-160000.5.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x"
},
"product_reference": "erlang-wx-src-27.1.3-160000.5.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "erlang-wx-src-27.1.3-160000.5.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64"
},
"product_reference": "erlang-wx-src-27.1.3-160000.5.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-4748",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-4748"
}
],
"notes": [
{
"category": "general",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027) vulnerability in Erlang OTP (stdlib modules) allows Absolute Path Traversal, File Manipulation. This vulnerability is associated with program files lib/stdlib/src/zip.erl and program routines zip:unzip/1, zip:unzip/2, zip:extract/1, zip:extract/2 unless the memory option is passed.\n\nThis issue affects OTP from OTP 17.0 until OTP 28.0.1, OTP 27.3.4.1 and OTP 26.2.5.13, corresponding to stdlib from 2.0 until 7.0.1, 6.2.2.1 and 5.2.3.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-4748",
"url": "https://www.suse.com/security/cve/CVE-2025-4748"
},
{
"category": "external",
"summary": "SUSE Bug 1244642 for CVE-2025-4748",
"url": "https://bugzilla.suse.com/1244642"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-05T11:01:03Z",
"details": "moderate"
}
],
"title": "CVE-2025-4748"
},
{
"cve": "CVE-2026-32147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32147"
}
],
"notes": [
{
"category": "general",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027) vulnerability in Erlang OTP ssh (ssh_sftpd module) allows an authenticated SFTP user to modify file attributes outside the configured chroot directory.\n\nThe SFTP daemon (ssh_sftpd) stores the raw, user-supplied path in file handles instead of the chroot-resolved path. When SSH_FXP_FSETSTAT is issued on such a handle, file attributes (permissions, ownership, timestamps) are modified on the real filesystem path, bypassing the root directory boundary entirely.\n\nAny authenticated SFTP user on a server configured with the root option can modify file attributes of files outside the intended chroot boundary. The prerequisite is that a target file must exist on the real filesystem at the same relative path. Note that this vulnerability only allows modification of file attributes; file contents cannot be read or altered through this attack vector.\n\nIf the SSH daemon runs as root, this enables direct privilege escalation: an attacker can set the setuid bit on any binary, change ownership of sensitive files, or make system configuration world-writable.\n\nThis vulnerability is associated with program files lib/ssh/src/ssh_sftpd.erl and program routines ssh_sftpd:do_open/4 and ssh_sftpd:handle_op/4.\n\nThis issue affects OTP from OTP 17.0 until OTP 28.4.3, 27.3.4.11, and 26.2.5.20 corresponding to ssh from 3.01 until 5.5.3, 5.2.11.7, and 5.1.4.15.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32147",
"url": "https://www.suse.com/security/cve/CVE-2026-32147"
},
{
"category": "external",
"summary": "SUSE Bug 1262503 for CVE-2026-32147",
"url": "https://bugzilla.suse.com/1262503"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-05T11:01:03Z",
"details": "moderate"
}
],
"title": "CVE-2026-32147"
},
{
"cve": "CVE-2026-42789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42789"
}
],
"notes": [
{
"category": "general",
"text": "Improper Following of a Certificate\u0027s Chain of Trust vulnerability in Erlang OTP public_key (pubkey_cert module) allows a non-CA certificate to be accepted as an intermediate issuer, enabling certificate chain forgery.\n\nIn lib/public_key/src/pubkey_cert.erl, pubkey_cert:validate_extensions/7 contains two flaws that together allow a certificate with basicConstraints cA:false and no keyUsage extension to be used as an intermediate issuer in a chain passed to public_key:pkix_path_validation/3: the cA:false clause recurses into the remaining extensions without rejecting the certificate when it is in issuer position, and the keyUsage check only fires when the extension is present, so a certificate lacking keyUsage entirely bypasses the keyCertSign enforcement.\n\nAny party holding an end-entity certificate with basicConstraints cA:false and no keyUsage extension, issued by any CA in the victim\u0027s trust store, can use that certificate\u0027s private key to sign forged leaf certificates for arbitrary identities. public_key:pkix_path_validation/3 accepts the resulting chain, and by extension every TLS or mTLS endpoint built on the OTP ssl application that relies on the default verifier is affected, including server identity verification on the client side and client certificate verification on mTLS servers.\n\nThis issue affects OTP from OTP 17.0 before OTP 26.2.5.21, 27.3.4.12, 28.5.0.1, and 29.0.1 corresponding to public_key from 0.22 before 1.15.1.7, 1.17.1.3, 1.20.3.1, and 1.21.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42789",
"url": "https://www.suse.com/security/cve/CVE-2026-42789"
},
{
"category": "external",
"summary": "SUSE Bug 1266449 for CVE-2026-42789",
"url": "https://bugzilla.suse.com/1266449"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-05T11:01:03Z",
"details": "important"
}
],
"title": "CVE-2026-42789"
},
{
"cve": "CVE-2026-42790",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42790"
}
],
"notes": [
{
"category": "general",
"text": "Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_cert and public_key modules) allows a DNS nameConstraints bypass via subject CommonName fallback in TLS hostname verification.\n\nTwo flaws combine to allow a subordinate CA whose DNS nameConstraints are restricted (e.g. permitted;DNS:allowed.example.com) to issue a leaf certificate that an OTP TLS client accepts as a valid identity for an out-of-scope hostname (e.g. victim.example.com):\n\nFirst, pubkey_cert:validate_names/6 in lib/public_key/src/pubkey_cert.erl only checks SAN DNS entries against nameConstraints. Per RFC 5280, a permitted DNS subtree only restricts certificates that contain a DNS-typed name. A leaf with no subjectAltName therefore trivially satisfies any permitted;DNS:... constraint regardless of its subject commonName.\n\nSecond, public_key:pkix_verify_hostname/3 in lib/public_key/src/public_key.erl falls back to the subject commonName when no subjectAltName is present, extracting id-at-commonName attributes as presented IDs and matching them against the reference hostname. The strict pkix_verify_hostname_match_fun(https) matcher does not suppress this fallback.\n\nThe result is that path validation accepts a CN-only leaf under a DNS-constrained intermediate (no SAN means the nameConstraints are not triggered), and hostname verification then accepts it via the CN fallback. The bypass is reachable from stock ssl:connect with verify_peer, a trusted CA, SNI, and the canonical strict https hostname matcher.\n\nThis issue affects OTP from OTP 19.3 before OTP 26.2.5.21, 27.3.4.12, 28.5.0.1, and 29.0.1 corresponding to public_key from 1.4 before 1.15.1.7, 1.17.1.3, 1.20.3.1, and 1.21.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42790",
"url": "https://www.suse.com/security/cve/CVE-2026-42790"
},
{
"category": "external",
"summary": "SUSE Bug 1266466 for CVE-2026-42790",
"url": "https://bugzilla.suse.com/1266466"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-05T11:01:03Z",
"details": "important"
}
],
"title": "CVE-2026-42790"
},
{
"cve": "CVE-2026-42791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42791"
}
],
"notes": [
{
"category": "general",
"text": "Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows forged OCSP responses signed with an expired responder certificate to be accepted as valid.\n\nOCSP response verification in pubkey_ocsp:verify_response/5 and pubkey_ocsp:is_authorized_responder/3 in lib/public_key/src/pubkey_ocsp.erl does not check the validity period (notBefore/notAfter) of the OCSP responder certificate. An attacker who has obtained the private key of an expired CA-designated OCSP responder certificate can forge OCSP responses that Erlang/OTP accepts as valid.\n\nThis affects TLS clients using OCSP stapling via the ssl application: a malicious or compromised server can present a revoked TLS certificate together with a forged OCSP response signed by an expired responder key, and the client will accept the revoked certificate as valid. It also affects applications calling public_key:pkix_ocsp_validate/5 directly, where the impact depends on the use case - server-side client certificate validation using this API may allow authentication bypass with a revoked client certificate.\n\nThis issue affects OTP from OTP 27.0 before OTP 27.3.4.12, 28.5.0.1, and 29.0.1 corresponding to public_key from 1.16 before 1.17.1.3, 1.20.3.1, and 1.21.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42791",
"url": "https://www.suse.com/security/cve/CVE-2026-42791"
},
{
"category": "external",
"summary": "SUSE Bug 1266448 for CVE-2026-42791",
"url": "https://bugzilla.suse.com/1266448"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-debugger-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-dialyzer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-diameter-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-doc-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-epmd-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-et-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-jinterface-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-observer-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-reltool-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-src-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-27.1.3-160000.5.1.x86_64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.aarch64",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.ppc64le",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.s390x",
"openSUSE Leap 16.0:erlang-wx-src-27.1.3-160000.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-05T11:01:03Z",
"details": "important"
}
],
"title": "CVE-2026-42791"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…