Security Vulnerability detected in Lemmy

4.bp.blogspot.com

Security Vulnerability detected in Lemmy

4.bp.blogspot.com

Netto Hikari@social.fossware.spaceM to

Meta@social.fossware.spaceEnglish · 1 year ago

Hey, guys.

Pre-workday-Netto chiming in to inform you that a XSS vulnerability has been found in Lemmy’s frontend and that several instances have been compromised.

You can track the issue here.

I implemented the supposed patch and uploaded an ARM64 build that has the patch applied to Docker Hub, if any other instance might need it (use with caution).

Please note that you’ll have to log back in, as all active sessions have been terminated.

I’ll continue to monitor the situation when I’m at work.

✌️

You must log in or register to comment.

Chat

Meta@social.fossware.space

fossware_meta@social.fossware.space

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !fossware_meta@social.fossware.space

Community locked: only moderators can create posts. You can still comment on posts.

About

🗞️ FOSSware staff will post regular updates about this instance or other Fediverse topics in this community.

Rules

🧾 General Instance Rules apply

Look at the side bar of the main feed.

👮 Only Staff Members can create Threads here

If you need help or want to ask a question, use /c/fossware_support. Thanks! 😻

🔗 Other Resources

/c/fossware_support for Support

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

2 users / day
1 user / week
1 user / month
1 user / 6 months
5 local subscribers
5 subscribers
18 Posts
51 Comments
Modlog

mods:
Netto Hikari@social.fossware.space