FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Erlang/OTP -- TLS distribution check_ip flag does not enforce same-LAN constraint

Affected packages
erlang-runtime27 < 27.3.4.13
erlang-runtime28 < 28.5.0.2
erlang-runtime29 < 29.0.2

Details

VuXML ID d87e5fb4-64d4-11f1-ab11-4c526214c986
Discovery 2026-06-10
Entry 2026-06-10

https://github.com/erlang/otp/security/advisories/GHSA-gp7x-mfv6-52cv reports:

Erlang distribution over TLS run with the kernel check_ip flag now properly enforces connecting nodes to be on the same LAN. Previously the constraint was not enforced.

[source]

References

CVE Name CVE-2026-48860
URL https://github.com/erlang/otp/security/advisories/GHSA-gp7x-mfv6-52cv

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.