Bug number - 1024632

Part of package: erlang.

Bug description:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
Debian Bug report logs -  #1024632 erlang: CVE-2022-37026 Client Authentication Bypass
Package:      erlang; Maintainer for erlang is Debian Erlang Packagers <pkg-erlang-devel@lists.alioth.debian.org>; Source for erlang is src:erlang (PTS, buildd, popcon).
Reported by: Markus Koschany <apo@debian.org>
Date: Tue, 22 Nov 2022 13:39:01 UTC
Severity: grave
Tags: fixed-upstream, security, upstream
Found in version erlang/1:24.3.4.1+dfsg-1
Fixed in versions erlang/1:24.3.4.5+dfsg-1, 1:23.2.6+dfsg-1+deb11u1
Done: Markus Koschany <apo@debian.org>
Bug is archived. No further changes may be made.

All x-patch and x-diff attachments.

Patch	Author	Date
erlang.debdiff	Markus Koschany <apo@debian.org>	Wed, 30 Nov 2022 14:11:40 +0100

Original bug report here.