Количество 2
Количество 2
CVE-2025-66622
matrix-sdk-base is the base component to build a Matrix client library. Versions 0.14.1 and prior are unable to handle responses that include custom m.room.join_rules values due to a serialization bug. This can be exploited to cause a denial-of-service condition, if a user is invited to a room with non-standard join rules, the crate's sync process will stall, preventing further processing for all rooms. This is fixed in version 0.16.0.
GHSA-jj6p-3m75-g2p3
matrix-sdk-base denial of service via custom m.room.join_rules event values
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-66622 matrix-sdk-base is the base component to build a Matrix client library. Versions 0.14.1 and prior are unable to handle responses that include custom m.room.join_rules values due to a serialization bug. This can be exploited to cause a denial-of-service condition, if a user is invited to a room with non-standard join rules, the crate's sync process will stall, preventing further processing for all rooms. This is fixed in version 0.16.0. | 0% Низкий | 2 месяца назад | |
| GHSA-jj6p-3m75-g2p3 matrix-sdk-base denial of service via custom m.room.join_rules event values | 0% Низкий | 2 месяца назад |
Уязвимостей на страницу