Mandriva Linux Security Advisory 2015-174 – An FTP command injection flaw was found in Erlang’s FTP module. Several functions in the FTP module do not properly sanitize the input before passing it into a control socket. A local attacker can use this flaw to execute arbitrary FTP commands on a system that uses this module. This update also disables SSLv3 by default to mitigate the POODLE issue.