FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-19 20:48:44 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
cfa0be42-3cd7-11eb-9de7-641c67a117d8	py-matrix-synapse -- DoS on Federation API Matrix developers reports: A malicious or poorly-implemented homeserver can inject malformed events into a room by specifying a different room id in the path of a /send_join, /send_leave, /invite or /exchange_third_party_invite request. This can lead to a denial of service in which future events will not be correctly sent to other servers over federation. This affects any server which accepts federation requests from untrusted servers. Discovery 2020-12-09 Entry 2020-12-13 py36-matrix-synapse py37-matrix-synapse py38-matrix-synapse py39-matrix-synapse < 1.23.1 CVE-2020-26257 https://github.com/matrix-org/synapse/security/advisories/GHSA-hxmp-pqch-c8mm ports/251768

VuXML ID

Description

cfa0be42-3cd7-11eb-9de7-641c67a117d8

py-matrix-synapse -- DoS on Federation API

Matrix developers reports:

A malicious or poorly-implemented homeserver can inject malformed events into a room by specifying a different room id in the path of a /send_join, /send_leave, /invite or /exchange_third_party_invite request. This can lead to a denial of service in which future events will not be correctly sent to other servers over federation. This affects any server which accepts federation requests from untrusted servers.

Discovery 2020-12-09
Entry 2020-12-13
py36-matrix-synapse
py37-matrix-synapse
py38-matrix-synapse
py39-matrix-synapse

< 1.23.1

CVE-2020-26257
https://github.com/matrix-org/synapse/security/advisories/GHSA-hxmp-pqch-c8mm
ports/251768