Skip to content

v0.5.4.1 - Security Hotfix
Compare
Choose a tag to compare
@majora2007 majora2007 released this 08 Aug 21:09
· 626 commits to main since this release
v0.5.4.1
9c31f7e
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

This is a security hotfix, please update immediately! Several high severity issues were disclosed to the Kavita team this morning that require an immediate hotfix.

Thanks @vultza for disclosing these issues through Huntr.

Added

  • Added: After 5 login attempts, Kavita will impose a 10 min lockout before authentication can be retried

Fixed

  • Fixed: Fixed an exploit that allowed a user to change the admin user's account password, thus taking ownership of the server
  • Fixed: Fixed an exploit that would allow an unauthorized user to delete reading list items within a user's reading list
  • Fixed: Fixed an exploit that allowed a user to abuse an API and leak sensitive files from the system
  • Fixed: Fixed an exploit that allowed an unauthenticated user to download pdfs from the server
  • Fixed: Fixed an exploit (SSRF) that would allow a user to upload a cover image that isn't an image

Contributors

vultza
Assets 9