Lucene search
Alpine Linux Development TeamALPINE:CVE-2021-40824HistorySep 13, 2021 - 7:15 p.m.
CVE-2021-40824
2021-09-1319:15:00
Alpine Linux Development Team
security.alpinelinux.org
22
0.001 Low
EPSS
Percentile
32.3%
A logic error in the room key sharing functionality of Element Android before 1.2.2 and matrix-android-sdk2 (aka Matrix SDK for Android) before 1.2.2 allows a malicious Matrix homeserver present in an encrypted room to steal room encryption keys (via crafted Matrix protocol messages) that were originally sent by affected Matrix clients participating in that room. This allows the attacker to decrypt end-to-end encrypted messages sent by affected clients.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-community | noarch | element-web | < 1.8.4-r0 | UNKNOWN |
| Alpine | 3.14-community | noarch | riot-web | < 1.8.4-r0 | UNKNOWN |
| Alpine | 3.15-community | noarch | riot-web | < 1.8.4-r0 | UNKNOWN |
| Alpine | 3.16-community | noarch | riot-web | < 1.8.4-r0 | UNKNOWN |
| Alpine | 3.17-community | noarch | riot-web | < 1.8.4-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | element-web | < 1.8.4-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | element-web | < 1.8.4-r0 | UNKNOWN |
Related
osv
osv
Logic error in Matrix SDK for Android
2022-05-24 19:14:16
CVE-2021-40824
2021-09-13 19:15:19
cvelist
cvelist
CVE-2021-40824
2021-09-13 18:49:28
prion
prion
Code injection
2021-09-13 19:15:00
github
github
Logic error in Matrix SDK for Android
2022-05-24 19:14:16
cve
cve
CVE-2021-40824
2021-09-13 19:15:00
nessus
nessus
freebsd
freebsd
Matrix clients -- several vulnerabilities
2021-08-23 00:00:00