Advisories ยป MGASA-2022-0450

Updated erlang packages fix security vulnerability

Publication date: 06 Dec 2022
Modification date: 06 Dec 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-37026

Description

In Erlang/OTP before 23.3.4.15, 24.x before 24.3.4.2, and 25.x before
25.0.2, there is a Client Authentication Bypass in certain
client-certification situations for SSL, TLS, and DTLS. (CVE-2022-37026)
                

References

SRPMS

8/core