3 matches found
USN-6076-1: Synapse vulnerabilities
It was discovered that Synapse incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. CVE-2019-18835, CVE-2018-12291, CVE-2018-10657 It was...
Ubuntu 18.04 ESM : Synapse vulnerabilities (USN-6076-1)
The remote Ubuntu 18.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6076-1 advisory. It was discovered that Synapse incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input...
CVE-2018-12423
CVE-2018-12423 affects Synapse prior to 0.31.2. The vulnerability allows unauthorized users to hijack rooms when there is no m.room.power_levels event in force. This is described consistently across multiple sources in the connected documents. Reported impact is room hijacking due to improper han...