Public
- Public
- Network
- Groups
- Featured
- Popular
- People

Notices by Tobias Frech (tobiasfrech@ijug.social)

Embed this notice
Tobias Frech (tobiasfrech@ijug.social)'s status on Wednesday, 31-Jul-2024 18:34:26 JST Tobias Frech
in reply to
- Kevin Beaumont
@GossiTheDog wow, that should free up some large portions of IT budget now. I mean, you don't need to hire big corp anymore if you can point at this and say "Even big MS with their Azure cloud could not defend against a DDoS!"

In conversation about 4 months ago from ijug.social permalink
Embed this notice
Tobias Frech (tobiasfrech@ijug.social)'s status on Saturday, 17-Feb-2024 14:38:02 JST Tobias Frech
in reply to
- arcanicanis
@arcanicanis Previously I was under the impression 4.2.6 fixed this already. Now 4.2.7 has been released just 1-2 hours ago with a fix for this.
https://github.com/mastodon/mastodon/releases/tag/v4.2.7
It seems to be fixed now. CVE-2024-23832 mentions up to 4.2.5 being vulnerable, not 4.2.6. Can you confirm this, please?
In conversation about 9 months ago from ijug.social permalink
Attachments
1. Domain not in remote thumbnail source whitelist: opengraph.githubassets.com
  
  Release v4.2.7 · mastodon/mastodon
  
  WarningThis release is an important security release fixing a major security issue. Corresponding security releases are available for the 4.1.x branch, the 4.0.x branch and the 3.5.x branch. NoteI...

User actions

dev, ops, sec, renewables, Java community (searchable)

Tags

(None)

Following 0

Followers 0

Groups 0

Statistics

User ID: 243230

Member since: 17 Feb 2024

Notices: 2

Daily average: 0

Feeds

Atom