GHSA-GRGV-6HW6-V9G4 vulnerabilities

Vulnerabilities for packages: synapse...

EUVD-2021-0128

Malware in sbrugna...

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : Synapse vulnerabilities (USN-7444-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7444-1 advisory. It was discovered that Synapse network policies could be bypassed via specially crafted URLs. An attacker could possibly use this...

USN-7444-1: Synapse vulnerabilities

It was discovered that Synapse network policies could be bypassed via specially crafted URLs. An attacker could possibly use this issue to bypass authentication mechanisms. CVE-2023-32683 It was discovered that Synapse exposed cached device information. An attacker could possibly use this issue t...

Fedora 40 : matrix-synapse (2024-995720f767)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-995720f767 advisory. CVE-2024-52805, CVE-2024-52815, CVE-2024-53863 ---- Backport fixes from v1.120.1 Tenable has extracted the preceding description block directly from...

Fedora 41 : matrix-synapse (2024-4cadba7a29)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-4cadba7a29 advisory. CVE-2024-52805, CVE-2024-52815, CVE-2024-53863, CVE-2024-53867 ---- Backport fixes from v1.120.1 Tenable has extracted the preceding description blo...

Ubuntu 18.04 ESM : Synapse vulnerabilities (USN-6076-1)

The remote Ubuntu 18.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6076-1 advisory. It was discovered that Synapse incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input...