Опубликовано: 02 мая 2018
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 5
CVSS3: 7.5
Описание
Matrix Synapse before 0.28.1 is prone to a denial of service flaw where malicious events injected with depth = 2^63 - 1 render rooms unusable, related to federation/federation_base.py and handlers/message.py, as exploited in the wild in April 2018.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | ignored | end of standard support, was needed |
| cosmic | released | 0.28.1+dfsg-1 |
| devel | released | 0.28.1+dfsg-1 |
| disco | released | 0.28.1+dfsg-1 |
| eoan | released | 0.28.1+dfsg-1 |
| esm-apps/bionic | released | 0.24.0+dfsg-1ubuntu0.1~esm1 |
| esm-apps/focal | released | 0.28.1+dfsg-1 |
| esm-apps/jammy | released | 0.28.1+dfsg-1 |
| esm-infra-legacy/trusty | DNE |
Показывать по
10
Ссылки на источники
EPSS
Процентиль: 60%
0.00402
Низкий
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
CVSS3: 7.5
nvd
почти 8 лет назад
Matrix Synapse before 0.28.1 is prone to a denial of service flaw where malicious events injected with depth = 2^63 - 1 render rooms unusable, related to federation/federation_base.py and handlers/message.py, as exploited in the wild in April 2018.
CVSS3: 7.5
debian
почти 8 лет назад
Matrix Synapse before 0.28.1 is prone to a denial of service flaw wher ...
EPSS
Процентиль: 60%
0.00402
Низкий
5 Medium
CVSS2
7.5 High
CVSS3