Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2024-53867

Опубликовано: 03 дек. 2024
Источник: ubuntu
Приоритет: medium
CVSS3: 4.3

Описание

Synapse is an open-source Matrix homeserver. The Sliding Sync feature on Synapse versions between 1.113.0rc1 and 1.120.0 can leak partial room state changes to users no longer in a room. Non-state events, like messages, are unaffected. This vulnerability is fixed in 1.120.1.

РелизСтатусПримечание
esm-apps/bionic

not-affected

0.24.0+dfsg-1ubuntu0.1~esm1
esm-apps/focal

not-affected

1.11.0-1
esm-apps/jammy

not-affected

1.53.0-1
esm-apps/noble

not-affected

1.100.0-1ubuntu1
focal

not-affected

1.11.0-1
jammy

not-affected

1.53.0-1
noble

not-affected

1.100.0-1ubuntu1
oracular

not-affected

1.100.0-1ubuntu1
upstream

released

1.120.1

Показывать по

Ссылки на источники

4.3 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2024-53867

CVSS3: 4.3
nvd
около 1 года назад

Synapse is an open-source Matrix homeserver. The Sliding Sync feature on Synapse versions between 1.113.0rc1 and 1.120.0 can leak partial room state changes to users no longer in a room. Non-state events, like messages, are unaffected. This vulnerability is fixed in 1.120.1.

debian логотип

CVE-2024-53867

CVSS3: 4.3
debian
около 1 года назад

Synapse is an open-source Matrix homeserver. The Sliding Sync feature ...

github логотип

GHSA-56w4-5538-8v8h

CVSS3: 4.3
github
около 1 года назад

Synapse Matrix has a partial room state leak via Sliding Sync

4.3 Medium

CVSS3