12 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-39374
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. If Synapse and a malicious homeserver are both joined to the sa...
Fedora: Security Advisory for rust-pythonize (FEDORA-2023-c0696d7b53)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for python-matrix-common (FEDORA-2023-c0696d7b53)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 37 : matrix-synapse / python-matrix-common / rust-pythonize (2023-c0696d7b53)
The remote Fedora 37 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-c0696d7b53 advisory. Update matrix-synapse to v1.80.0 to fix CVE-2022-39374, CVE-2023-32323 Tenable has extracted the preceding description block directly from the Fedor...
matrix-synapse-testutils (>=1.65.0.0 <=1.67.0.0) potentially affected by CVE-2022-39374 via matrix-synapse (>=1.65.0 <=1.67.0)
matrix-synapse PYPI version =1.65.0, =1.65.0.0, =1.67.0.0 Source cves: CVE-2022-39374 Source advisory: OSV:PYSEC-2023-66...
CVE-2022-39374 Synapse Denial of service due to incorrect application of event authorization rules during state resolution
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. If Synapse and a malicious homeserver are both joined to the same room, the malicious homeserver can trick Synapse into accepting previously rejected events into its view of the current state of that...
CVE-2022-39374 Synapse Denial of service due to incorrect application of event authorization rules during state resolution
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. If Synapse and a malicious homeserver are both joined to the same room, the malicious homeserver can trick Synapse into accepting previously rejected events into its view of the current state of that...
CVE-2022-39374
Synapse (Matrix.org) vulnerable to CVE-2022-39374: when a malicious homeserver shares a room with a vulnerable Synapse, it can trick Synapse into accepting previously rejected events, causing subsequent messages and state changes from that server in the room to be rejected. This issue has been pa...
CVE-2022-39374
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. If Synapse and a malicious homeserver are both joined to the same room, the malicious homeserver can trick Synapse into accepting previously rejected events into its view of the current state of that...
CVE-2022-39374
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. If Synapse and a malicious homeserver are both joined to the same room, the malicious homeserver can trick Synapse into accepting previously rejected events into its view of the current state of that...
CVE-2022-39374
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. If Synapse and a malicious homeserver are both joined to the same room, the malicious homeserver can trick Synapse into accepting previously rejected events into its view of the current state of that...
matrix-synapse-testutils (>=1.65.0.0 <=1.68.0.0) potentially affected by CVE-2022-39374 via matrix-synapse (>=1.65.0 <=1.68.0)
matrix-synapse PYPI version =1.65.0, =1.65.0.0, =1.68.0.0 Source cves: CVE-2022-39374 Source advisory: OSV:GHSA-P9QP-C452-F9R7...