UBUNTU-CVE-2026-54886

Source
https://ubuntu.com/security/CVE-2026-54886
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-54886.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2026-54886
Upstream
  • CVE-2026-54886
Published
2026-07-03T00:00:00Z
Modified
2026-07-03T21:45:38.924950178Z
Severity
  • 5.3 (Medium) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVSS Calculator
  • Ubuntu - medium
Summary
[none]
Details

Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in Erlang OTP ssh (sshsftpd module) allows an authenticated SFTP user to render an SFTP channel permanently unresponsive. The handledata/4 function in sshsftpd contains a catch-all clause that accepts channel data of any type. When channel data with a non-zero type code (SSHMSGCHANNELEXTENDEDDATA) arrives with an empty pending buffer and a payload at or below the SFTP packet size limit, the clause tail-calls itself with identical arguments, creating an infinite loop. The SFTP protocol operates exclusively on normal channel data (type 0). Extended data (non-zero type) is meaningless for SFTP and is never sent by conforming clients. However, the SSH protocol permits any channel participant to send extended data on an open channel, so an authenticated SFTP client can trigger the loop by sending SSHMSGCHANNELEXTENDEDDATA with any datatypecode and any non-empty payload at or below the size limit. The targeted sshsftpd process enters an infinite tail-recursive loop. It never processes another message, its message queue grows without bound, and it can only be stopped by killing the process. BEAM's reduction-based scheduler preemption continues to function, so other processes on the node are not starved, but each stuck channel process consumes its full CPU time share continuously and accumulates unbounded message queue memory. Opening many channels amplifies the CPU and memory impact. Erlang/OTP SSH configurations using the default maxchannels setting (infinity) allow an authenticated user to open unlimited channels per connection, amplifying the attack without requiring multiple TCP connections or authentications. No file contents, credentials, or write access are obtainable through this issue. The impact is limited to denial of service on targeted SFTP channels, with secondary CPU degradation and memory growth. This vulnerability is associated with program file lib/ssh/src/sshsftpd.erl and program routine sshsftpd:handledata/4. This issue affects OTP from OTP 17.0 until OTP 29.0.3, 28.5.0.3, and 27.3.4.14 corresponding to ssh from 3.0.1 until 6.0.2, 5.5.2.2, and 5.2.11.9.

References

Affected packages

Ubuntu:22.04:LTS
erlang

Package

Name
erlang
Purl
pkg:deb/ubuntu/erlang?arch=source&distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:23.*
1:23.2.6+dfsg-1build1
1:24.*
1:24.1.1+dfsg-1
1:24.1.4+dfsg-1
1:24.1.5+dfsg-1
1:24.1.5+dfsg-1ubuntu1
1:24.2+dfsg-1
1:24.2.1+dfsg-1
1:24.2.1+dfsg-1ubuntu0.1
1:24.2.1+dfsg-1ubuntu0.2
1:24.2.1+dfsg-1ubuntu0.3
1:24.2.1+dfsg-1ubuntu0.4
1:24.2.1+dfsg-1ubuntu0.5
1:24.2.1+dfsg-1ubuntu0.6

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "erlang",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-asn1",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-base",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-common-test",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-crypto",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-debugger",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-dialyzer",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-diameter",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-edoc",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-eldap",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-erl-docgen",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-et",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-eunit",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-examples",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-ftp",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-inets",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-jinterface",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-manpages",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-megaco",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-mnesia",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-mode",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-nox",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-observer",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-odbc",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-os-mon",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-parsetools",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-public-key",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-reltool",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-runtime-tools",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-snmp",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-src",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-ssh",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-ssl",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-syntax-tools",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-tftp",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-tools",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-wx",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-x11",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        },
        {
            "binary_name": "erlang-xmerl",
            "binary_version": "1:24.2.1+dfsg-1ubuntu0.6"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-54886.json"
Ubuntu:24.04:LTS
erlang

Package

Name
erlang
Purl
pkg:deb/ubuntu/erlang?arch=source&distro=noble

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:25.*
1:25.2.3+dfsg-1
1:25.3.2.8+dfsg-1
1:25.3.2.8+dfsg-1ubuntu1
1:25.3.2.8+dfsg-1ubuntu3
1:25.3.2.8+dfsg-1ubuntu4
1:25.3.2.8+dfsg-1ubuntu4.1
1:25.3.2.8+dfsg-1ubuntu4.2
1:25.3.2.8+dfsg-1ubuntu4.3
1:25.3.2.8+dfsg-1ubuntu4.4
1:25.3.2.8+dfsg-1ubuntu4.5
1:25.3.2.8+dfsg-1ubuntu4.6

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "erlang",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-asn1",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-base",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-common-test",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-crypto",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-debugger",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-dialyzer",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-diameter",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-edoc",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-eldap",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-erl-docgen",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-et",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-eunit",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-examples",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-ftp",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-inets",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-jinterface",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-manpages",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-megaco",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-mnesia",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-mode",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-nox",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-observer",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-odbc",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-os-mon",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-parsetools",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-public-key",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-reltool",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-runtime-tools",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-snmp",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-src",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-ssh",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-ssl",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-syntax-tools",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-tftp",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-tools",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-wx",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-x11",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        },
        {
            "binary_name": "erlang-xmerl",
            "binary_version": "1:25.3.2.8+dfsg-1ubuntu4.6"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-54886.json"
Ubuntu:25.10
erlang

Package

Name
erlang
Purl
pkg:deb/ubuntu/erlang?arch=source&distro=questing

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:27.*
1:27.3+dfsg-1ubuntu1
1:27.3+dfsg-1ubuntu1.1
1:27.3.4.1+dfsg-1
1:27.3.4.1+dfsg-1build1
1:27.3.4.1+dfsg-1ubuntu0.1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "erlang",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-asn1",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-base",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-common-test",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-crypto",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-debugger",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-dialyzer",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-diameter",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-edoc",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-eldap",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-et",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-eunit",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-examples",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-ftp",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-inets",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-jinterface",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-megaco",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-mnesia",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-mode",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-nox",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-observer",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-odbc",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-os-mon",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-parsetools",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-public-key",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-reltool",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-runtime-tools",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-snmp",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-src",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-ssh",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-ssl",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-syntax-tools",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-tftp",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-tools",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-wx",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-x11",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        },
        {
            "binary_name": "erlang-xmerl",
            "binary_version": "1:27.3.4.1+dfsg-1ubuntu0.1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-54886.json"
Ubuntu:26.04:LTS
erlang

Package

Name
erlang
Purl
pkg:deb/ubuntu/erlang?arch=source&distro=resolute

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:27.*
1:27.3.4.1+dfsg-1build1
1:27.3.4.3+dfsg-1
1:27.3.4.4+dfsg-1
1:27.3.4.6+dfsg-1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "erlang",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-asn1",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-base",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-common-test",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-crypto",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-debugger",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-dialyzer",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-diameter",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-edoc",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-eldap",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-et",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-eunit",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-examples",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-ftp",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-inets",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-jinterface",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-megaco",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-mnesia",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-mode",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-nox",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-observer",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-odbc",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-os-mon",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-parsetools",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-public-key",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-reltool",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-runtime-tools",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-snmp",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-src",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-ssh",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-ssl",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-syntax-tools",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-tftp",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-tools",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-wx",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-x11",
            "binary_version": "1:27.3.4.6+dfsg-1"
        },
        {
            "binary_name": "erlang-xmerl",
            "binary_version": "1:27.3.4.6+dfsg-1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-54886.json"
Ubuntu:Pro:14.04:LTS
erlang

Package

Name
erlang
Purl
pkg:deb/ubuntu/erlang?arch=source&distro=esm-infra-legacy%2Ftrusty

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:16.*
1:16.b.1-dfsg-4ubuntu1
1:16.b.2-dfsg-1ubuntu1
1:16.b.2-dfsg-2ubuntu1
1:16.b.3-dfsg-1ubuntu1
1:16.b.3-dfsg-1ubuntu2
1:16.b.3-dfsg-1ubuntu2.1
1:16.b.3-dfsg-1ubuntu2.2
1:16.b.3-dfsg-1ubuntu2.2+esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "erlang",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-appmon",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-asn1",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-base",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-base-hipe",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-common-test",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-corba",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-crypto",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-debugger",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-dialyzer",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-diameter",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-edoc",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-eldap",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-erl-docgen",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-et",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-eunit",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-examples",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-gs",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-ic",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-ic-java",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-inets",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-jinterface",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-manpages",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-megaco",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-mnesia",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-mode",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-nox",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-observer",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-odbc",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-os-mon",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-parsetools",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-percept",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-pman",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-public-key",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-reltool",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-runtime-tools",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-snmp",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-src",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-ssh",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-ssl",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-syntax-tools",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-test-server",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-toolbar",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-tools",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-tv",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-typer",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-webtool",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-x11",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        },
        {
            "binary_name": "erlang-xmerl",
            "binary_version": "1:16.b.3-dfsg-1ubuntu2.2+esm1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-54886.json"
Ubuntu:Pro:16.04:LTS
erlang

Package

Name
erlang
Purl
pkg:deb/ubuntu/erlang?arch=source&distro=esm-infra%2Fxenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:18.*
1:18.0-dfsg-1ubuntu1
1:18.0-dfsg-1ubuntu2
1:18.2-dfsg-2ubuntu1
1:18.3-dfsg-1ubuntu1
1:18.3-dfsg-1ubuntu2
1:18.3-dfsg-1ubuntu3
1:18.3-dfsg-1ubuntu3.1
1:18.3-dfsg-1ubuntu3.1+esm1
1:18.3-dfsg-1ubuntu3.1+esm2

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "erlang",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-asn1",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-base",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-base-hipe",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-common-test",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-corba",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-crypto",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-debugger",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-dialyzer",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-diameter",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-edoc",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-eldap",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-erl-docgen",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-et",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-eunit",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-examples",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-gs",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-ic",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-ic-java",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-inets",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-jinterface",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-manpages",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-megaco",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-mnesia",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-mode",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-nox",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-observer",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-odbc",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-os-mon",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-parsetools",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-percept",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-public-key",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-reltool",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-runtime-tools",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-snmp",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-src",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-ssh",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-ssl",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-syntax-tools",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-test-server",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-tools",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-typer",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-webtool",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-wx",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-x11",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        },
        {
            "binary_name": "erlang-xmerl",
            "binary_version": "1:18.3-dfsg-1ubuntu3.1+esm2"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-54886.json"
Ubuntu:Pro:18.04:LTS
erlang

Package

Name
erlang
Purl
pkg:deb/ubuntu/erlang?arch=source&distro=esm-infra%2Fbionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:20.*
1:20.0.4+dfsg-1ubuntu1
1:20.1.2+dfsg-1ubuntu1
1:20.1.3+dfsg-1ubuntu1
1:20.1.4+dfsg-1ubuntu1
1:20.1.5+dfsg-1ubuntu1
1:20.1.6+dfsg-1ubuntu1
1:20.1.7+dfsg-1ubuntu1
1:20.2.1+dfsg-1ubuntu1
1:20.2.2+dfsg-1ubuntu1
1:20.2.2+dfsg-1ubuntu2
1:20.2.2+dfsg-1ubuntu2+esm1
1:20.2.2+dfsg-1ubuntu2+esm2

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "erlang",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-asn1",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-base",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-base-hipe",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-common-test",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-corba",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-crypto",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-debugger",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-dialyzer",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-diameter",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-edoc",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-eldap",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-erl-docgen",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-et",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-eunit",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-examples",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-ic",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-ic-java",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-inets",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-jinterface",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-manpages",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-megaco",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-mnesia",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-mode",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-nox",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-observer",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-odbc",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-os-mon",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-parsetools",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-public-key",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-reltool",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-runtime-tools",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-snmp",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-src",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-ssh",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-ssl",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-syntax-tools",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-tools",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-wx",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-x11",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        },
        {
            "binary_name": "erlang-xmerl",
            "binary_version": "1:20.2.2+dfsg-1ubuntu2+esm2"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-54886.json"
Ubuntu:Pro:20.04:LTS
erlang

Package

Name
erlang
Purl
pkg:deb/ubuntu/erlang?arch=source&distro=esm-infra%2Ffocal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1:22.*
1:22.0.7+dfsg-1build1
1:22.2+dfsg-1
1:22.2.1+dfsg-1
1:22.2.2+dfsg-1
1:22.2.3+dfsg-1
1:22.2.3+dfsg-2
1:22.2.4+dfsg-1
1:22.2.7+dfsg-1
1:22.2.7+dfsg-1ubuntu0.2
1:22.2.7+dfsg-1ubuntu0.3
1:22.2.7+dfsg-1ubuntu0.4
1:22.2.7+dfsg-1ubuntu0.5
1:22.2.7+dfsg-1ubuntu0.5+esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "erlang",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-asn1",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-base",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-base-hipe",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-common-test",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-crypto",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-debugger",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-dialyzer",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-diameter",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-edoc",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-eldap",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-erl-docgen",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-et",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-eunit",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-examples",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-ftp",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-inets",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-jinterface",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-manpages",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-megaco",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-mnesia",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-mode",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-nox",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-observer",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-odbc",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-os-mon",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-parsetools",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-public-key",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-reltool",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-runtime-tools",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-snmp",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-src",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-ssh",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-ssl",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-syntax-tools",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-tftp",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-tools",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-wx",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-x11",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        },
        {
            "binary_name": "erlang-xmerl",
            "binary_version": "1:22.2.7+dfsg-1ubuntu0.5+esm1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-54886.json"