Vulnerability in Erlang Otp
CVE-2026-55950
Time-of-check Time-of-use (TOCTOU) race condition vulnerability in Erlang/OTP ssl (dtls_packet_demux module) allows an unauthenticated remote attacker to crash all active DTLS sessions on a listener. A DTLS server listener uses a single s…
Vulnerability class: TOCTOU (Time-of-Check to Time-of-Use)
Affected products
- Erlang Otp — versions 10.9, 25.3, 44dcb4c3d900777493ce2a6129f451aa475811f9
Weakness classification (CWE)
References
- 6b3ad84c-e1a6-4bf7-a703-f496b71e49db (related, vendor-advisory)
- 6b3ad84c-e1a6-4bf7-a703-f496b71e49db (related)
- 6b3ad84c-e1a6-4bf7-a703-f496b71e49db (related)
- 6b3ad84c-e1a6-4bf7-a703-f496b71e49db (x_version-scheme)
- 6b3ad84c-e1a6-4bf7-a703-f496b71e49db (patch)