[erlang-bugs] Denial-of-service vulnerability in erlang's group.erl

Stefan Zegenhagen <>
Wed Jun 26 10:48:24 CEST 2013

Dear Matthias,

> > All input routines in lib/kernel/src/group.erl suffer from a
> > denial-of-service vulnerability that can easily be used by an attacker
> Is this a new problem or are you reporting 
>   http://erlang.org/pipermail/erlang-patches/2013-June/004138.html
> one more time?

Yes, it is. I reposted it because the patch was rejected, but the issue
is still unsolved. It is, however, imported for us to get solved.

Kind regards,

Dr. Stefan Zegenhagen

arcutronix GmbH
Garbsener Landstr. 10
30419 Hannover

Tel:   +49 511 277-2734
Fax:   +49 511 277-2709
Web:   www.arcutronix.com

*Synchronize the Ethernet*

General Managers: Dipl. Ing. Juergen Schroeder, Dr. Josef Gfrerer -
Legal Form: GmbH, Registered office: Hannover, HRB 202442, Amtsgericht
Hannover; Ust-Id: DE257551767.

Please consider the environment before printing this message.

More information about the erlang-bugs mailing list