This update for erlang fixes the following issues:
* CVE-2025-48039:Fixed an excessive use of system resources. (bsc#1249469)
* CVE-2025-48038:Fixed an excessive use of system resources. (bsc#1249470)
* CVE-2025-48040:Fixed an excessive resource consumption. (bsc#1249472)
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.3
zypper in -t patch SUSE-2026-661=1
* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2026-661=1
* Server Applications Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP7-2026-661=1
* openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586)
* erlang-src-23.3.4.19-150300.3.29.1
* erlang-et-23.3.4.19-150300.3.29.1
* erlang-dialyzer-debuginfo-23.3.4.19-150300.3.29.1
* erlang-jinterface-23.3.4.19-150300.3.29.1
* erlang-diameter-23.3.4.19-150300.3.29.1
* erlang-epmd-23.3.4.19-150300.3.29.1
* erlang-wx-23.3.4.19-150300.3.29.1
* erlang-epmd-debuginfo-23.3.4.19-150300.3.29.1
* erlang-debugger-23.3.4.19-150300.3.29.1
* erlang-wx-debuginfo-23.3.4.19-150300.3.29.1
* erlang-reltool-23.3.4.19-150300.3.29.1
* erlang-wx-src-23.3.4.19-150300.3.29.1
* erlang-23.3.4.19-150300.3.29.1
* erlang-observer-23.3.4.19-150300.3.29.1
* erlang-reltool-src-23.3.4.19-150300.3.29.1
* erlang-diameter-src-23.3.4.19-150300.3.29.1
* erlang-debugsource-23.3.4.19-150300.3.29.1
* erlang-et-src-23.3.4.19-150300.3.29.1
* erlang-doc-23.3.4.19-150300.3.29.1
* erlang-debuginfo-23.3.4.19-150300.3.29.1
* erlang-debugger-src-23.3.4.19-150300.3.29.1
* erlang-jinterface-src-23.3.4.19-150300.3.29.1
*...
Read the Full Advisory* bsc#1249469
* bsc#1249470
* bsc#1249472
## References:
* https://www.suse.com/security/cve/CVE-2025-48038.html
* https://www.suse.com/security/cve/CVE-2025-48039.html
* https://www.suse.com/security/cve/CVE-2025-48040.html
* https://bugzilla.suse.com/show_bug.cgi?id=1249469
* https://bugzilla.suse.com/show_bug.cgi?id=1249470
* https://bugzilla.suse.com/show_bug.cgi?id=1249472
Get the latest Linux and open source security news straight to your inbox.