[SECURITY] Fedora 44 Update: nheko-0.12.1-16.fc44

The motivation behind the project is to provide a native desktop app for Matrix that feels more like a mainstream chat app...

[SECURITY] Fedora 42 Update: nheko-0.12.1-10.fc42

The motivation behind the project is to provide a native desktop app for Matrix that feels more like a mainstream chat app...

Linux Distros Unpatched Vulnerability : CVE-2022-39264

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nheko is a desktop client for the Matrix communication application. All versions below 0.10.2 are vulnerable homeservers inserting malicious secrets, which coul...

[SECURITY] Fedora 42 Update: nheko-0.12.0-15.fc42

The motivation behind the project is to provide a native desktop app for Matrix that feels more like a mainstream chat app...

Fedora 37 : nheko (2022-959b529587)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-959b529587 advisory. Updated to version 0.10.2 with CVE fix. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus ha...

Fedora 36 : nheko (2022-1fd94a54a1)

The remote Fedora 36 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-1fd94a54a1 advisory. Updated to version 0.10.2 with CVE fix. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus ha...

Man-in-the-Middle (MitM)

nheko is vulnerable to man-in-the-middle MitM attacks. The library homeservers inserting malicious secrets, allows remote attackers to cause man-in-the-middle attacks...

Fedora: Security Advisory for nheko (FEDORA-2022-1fd94a54a1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 36 Update: nheko-0.10.2-1.fc36

The motivation behind the project is to provide a native desktop app for Matrix that feels more like a mainstream chat app...

[SECURITY] Fedora 37 Update: nheko-0.10.2-1.fc37

The motivation behind the project is to provide a native desktop app for Matrix that feels more like a mainstream chat app...

Fedora: Security Advisory for nheko (FEDORA-2022-959b529587)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

DEBIAN-CVE-2022-39264

nheko is a desktop client for the Matrix communication application. All versions below 0.10.2 are vulnerable homeservers inserting malicious secrets, which could lead to man-in-the-middle attacks. Users can upgrade to version 0.10.2 to protect against this issue. As a workaround, one may apply th...

CVE-2022-39264

nheko is a desktop client for the Matrix communication application. All versions below 0.10.2 are vulnerable homeservers inserting malicious secrets, which could lead to man-in-the-middle attacks. Users can upgrade to version 0.10.2 to protect against this issue. As a workaround, one may apply th...

CVE-2022-39264

nheko is a desktop client for the Matrix communication application. All versions below 0.10.2 are vulnerable homeservers inserting malicious secrets, which could lead to man-in-the-middle attacks. Users can upgrade to version 0.10.2 to protect against this issue. As a workaround, one may apply th...

UBUNTU-CVE-2022-39264

nheko is a desktop client for the Matrix communication application. All versions below 0.10.2 are vulnerable homeservers inserting malicious secrets, which could lead to man-in-the-middle attacks. Users can upgrade to version 0.10.2 to protect against this issue. As a workaround, one may apply th...

CVE-2022-39264 nheko vulnerable to secret poisoning using MITM on secret requests by the homeserver

nheko is a desktop client for the Matrix communication application. All versions below 0.10.2 are vulnerable homeservers inserting malicious secrets, which could lead to man-in-the-middle attacks. Users can upgrade to version 0.10.2 to protect against this issue. As a workaround, one may apply th...

PT-2022-24854 · Nheko · Nheko

Name of the Vulnerable Software and Affected Versions: nheko versions prior to 0.10.2 Description: nheko is a desktop client for the Matrix communication application. The issue allows homeservers to insert malicious secrets, which could lead to man-in-the-middle attacks. Recommendations: For...

CVE-2022-39264 nheko vulnerable to secret poisoning using MITM on secret requests by the homeserver

nheko is a desktop client for the Matrix communication application. All versions below 0.10.2 are vulnerable homeservers inserting malicious secrets, which could lead to man-in-the-middle attacks. Users can upgrade to version 0.10.2 to protect against this issue. As a workaround, one may apply th...

CVE-2022-39264

nheko is a desktop client for the Matrix communication application. All versions below 0.10.2 are vulnerable homeservers inserting malicious secrets, which could lead to man-in-the-middle attacks. Users can upgrade to version 0.10.2 to protect against this issue. As a workaround, one may apply th...

nheko 信任管理问题漏洞

nheko is an open source native desktop application from Nheko-Reborn. A trust management issue vulnerability previously existed in nheko version 0.10.2, which stems from a vulnerability that could lead to a man-in-the-middle attack...