Fedora 37 : matrix-synapse (2023-954c2ec5bd)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-954c2ec5bd advisory. Backport fix for CVE-2023-45129 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

CVE-2023-45129

Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. Prior to version 1.94.0, a malicious server ACL event can impact performance temporarily or permanently leading to a persistent denial of service. Homeservers running on a closed federation which...

Design/Logic Flaw

Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. Prior to version 1.94.0, a malicious server ACL event can impact performance temporarily or permanently leading to a persistent denial of service. Homeservers running on a closed federation which...

Matrix Synapse Security Vulnerability

Matrix Synapse is a Matrix Management Server implementation from the Matrix Foundation in the UK. A security vulnerability exists in Matrix Synapse versions prior to 1.94.0 that stems from a malicious server ACL event that can impact server performance and lead to a denial of service DOS...