Patch Package OTP 27.2.4 Released

[Erlang/OTP]

Patch Package:           OTP 27.2.4
Git Tag:                 OTP-27.2.4
Date:                    2025-02-20
Trouble Report Id:       OTP-19438, OTP-19466
Seq num:                 CVE-2025-26618, ERIERL-1173, ERIERL-1180
System:                  OTP
Release:                 27
Application:             snmp-5.18.1, ssh-5.2.7
Predecessor:             OTP 27.2.3

Check out the git tag OTP-27.2.4, and build a full OTP system including
documentation. Apply one or more applications from this build as patches to your
installation using the 'otp_patch_apply' tool. For information on install
requirements, see descriptions for each application version below.

# snmp-5.18.1

The snmp-5.18.1 application can be applied independently of other applications
on a full OTP 27 installation.

## Fixed Bugs and Malfunctions

- SNMP Agent transports type (intAgentTransports) was incorrectly not documented
  as a list of transports. Also add a couple of config file generation examples.

  Own Id: OTP-19438
  Related Id(s): ERIERL-1180

> #### Full runtime dependencies of snmp-5.18.1
>
> crypto-4.6, erts-12.0, kernel-8.0, mnesia-4.12, runtime_tools-1.8.14,
> stdlib-5.0

# ssh-5.2.7

The ssh-5.2.7 application can be applied independently of other applications on
a full OTP 27 installation.

## Fixed Bugs and Malfunctions

- SFTP packets exceeding max packet size are not processed and dropped.

  Own Id: OTP-19466
  Related Id(s): ERIERL-1173, CVE-2025-26618

> #### Full runtime dependencies of ssh-5.2.7
>
> crypto-5.0, erts-14.0, kernel-9.0, public_key-1.6.1, runtime_tools-1.15.1,
> stdlib-5.0, stdlib-6.0