Critical vulnerability - Githubissues

YunoHost-Apps / mastodon_ynh

Free, open-source social network for YunoHost

https://joinmastodon.org/

GNU Affero General Public License v3.0

84 stars 33 forks source link

Critical vulnerability #433

Closed Minecodes closed 5 months ago

Minecodes commented 5 months ago

Please quickly update this package, because there's a vulnerability in Mastodon. It affects the versions 4.2.3 and lower. The versions that have been fixed against this are 3.5.17, 4.0.13, 4.1.13, and 4.2.5.

CVE: https://nvd.nist.gov/vuln/detail/CVE-2023-42451 The Hacker News: https://thehackernews.com/2023/07/mastodon-social-network-patches.html?m=1

panomaki commented 5 months ago

See Pullrequest #432

panomaki commented 5 months ago

Solved by pullrequest #432, please close this issue.