Release v1.95.1: The following issue is fixed in 1.95.1. · element-hq/synapse

v1.95.1
a115119
Verified

This tag was signed with the committer’s verified signature.

erikjohnston Erik Johnston

GPG key ID: A542E4ED1B0FAC09

Learn about vigilant mode
Compare

Choose a tag to compare

View all tags

v1.95.1: The following issue is fixed in 1.95.1.

v1.95.1
a115119
Compare

Choose a tag to compare

View all tags
Verified

This tag was signed with the committer’s verified signature.

erikjohnston Erik Johnston

GPG key ID: A542E4ED1B0FAC09

Learn about vigilant mode

erikjohnston tagged this 31 Oct 14:05

- [GHSA-mp92-3jfm-3575](https://github.com/matrix-org/synapse/security/advisories/GHSA-mp92-3jfm-3575) / [CVE-2023-43796](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43796) — Moderate Severity

  Cached device information of remote users can be queried from Synapse. This can be used to enumerate the remote users known to a homeserver.

See the advisory for more details. If you have any questions, email security@matrix.org.

Assets 2

Source code (zip)

2023-10-31T14:05:07Z
Source code (tar.gz)

2023-10-31T14:05:07Z

Provide feedback

Saved searches

Use saved searches to filter your results more quickly