Linux Distros Unpatched Vulnerability : CVE-2024-45191

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Matrix libolm through 3.2.16. The AES implementation is vulnerable to cache- timing attacks due to use of S-boxes. This is related to...

SUSE CVE-2023-41335

Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. When users update their passwords, the new credentials may be briefly held in the server database. While this doesn't grant the server any added capabilities-it already learns the users' passwords as...

Linux Distros Unpatched Vulnerability : CVE-2017-11548

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The tokenizematrix function in audioout.c in Xiph.Org libao 1.2.0 allows remote attackers to cause a denial of service memory corruption via a crafted MP3 file...

Fedora 41 : matrix-synapse (2025-a257fc1a8f)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-a257fc1a8f advisory. Update to v1.136.0 ---- Update to 1.135.2 ---- Update to 1.135.0 Tenable has extracted the preceding description block directly from the Fedora security...

[SECURITY] Fedora 41 Update: matrix-synapse-1.136.0-1.fc41

Matrix is an ambitious new ecosystem for open federated Instant Messaging and VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is intended to showcase the concept of Matrix and let folks see the spec in...

Fedora: Security Advisory (FEDORA-2025-a257fc1a8f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Linux Distros Unpatched Vulnerability : CVE-2024-45192

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Matrix libolm through 3.2.16. Cache-timing attacks can occur due to use of base64 when decoding group session keys. This refers to th...

Linux Distros Unpatched Vulnerability : CVE-2021-21393

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Synapse is a Matrix reference homeserver written in python pypi package matrix-synapse. Matrix is an ecosystem for open federated Instant Messaging and VoIP. In...

Linux Distros Unpatched Vulnerability : CVE-2021-21274

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Synapse is a Matrix reference homeserver written in python pypi package matrix-synapse. Matrix is an ecosystem for open federated Instant Messaging and VoIP. In...

Linux Distros Unpatched Vulnerability : CVE-2022-39254

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - matrix-nio is a Python Matrix client library, designed according to sans I/O principles. Prior to version 0.20, when a users requests a room key from their...

Malicious code in hypertheme-matrix (npm)

The package hypertheme-matrix was found to contain malicious code...

Malicious code in poltergeist-ha-hdmi-matrix (npm)

The package poltergeist-ha-hdmi-matrix was found to contain malicious code...

MAL-2025-22861 Malicious code in hypertheme-matrix (npm)

The package hypertheme-matrix was found to contain malicious code...

matrix-synapse-1.136.0-1.1 on GA media (moderate)

matrix-synapse-1.136.0-1.1 on GA media Announcement ID: openSUSE-SU-2025:15436-1 Rating: moderate Cross-References: CVE-2025-49090 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...

Fedora 42 : matrix-synapse (2025-9e0e3043af)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-9e0e3043af advisory. Update to 1.135.2 ---- Update to 1.135.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

Malicious code in symphony-hierarchical-confusion-matrix (npm)

The package communicates with a domain associated with malicious activity...

MAL-2025-6960 Malicious code in symphony-hierarchical-confusion-matrix (npm)

The package communicates with a domain associated with malicious activity...

[SECURITY] Fedora 42 Update: matrix-synapse-1.135.2-1.fc42

Matrix is an ambitious new ecosystem for open federated Instant Messaging and VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is intended to showcase the concept of Matrix and let folks see the spec in...

Fedora: Security Advisory (FEDORA-2025-9e0e3043af)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OPENSUSE-SU-2025:15436-1 matrix-synapse-1.136.0-1.1 on GA media

These are all security issues fixed in the matrix-synapse-1.136.0-1.1 package on the GA media of openSUSE Tumbleweed...