[Bug 1848709] [NEW] implementation is unusably old and contains significant security problems
Launchpad Bug Tracker
1848709 at bugs.launchpad.net
Fri Sep 1 00:22:52 UTC 2023
You have been subscribed to a public bug by Jeremy BĂcha (jbicha):
The versions of matrix-synapse in 18.04 and 18.10 are sufficiently old
that they will be unable to communicate with any other Matrix servers.
They also contain a number of known security problems, including
CVE-2019-5885 [1].
It would be preferable to remove the unmaintained packages from at least
bionic and cosmic, rather than provide outdated packages containing
significant security problems.
Better-maintained packages are available for Ubuntu users in the
matrix.org repositories [2].
[1] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5885
** Affects: matrix-synapse (Ubuntu)
Importance: Undecided
Status: Confirmed
** Affects: matrix-synapse (Debian)
Importance: Unknown
Status: Unknown
** Tags: community-security
--
implementation is unusably old and contains significant security problems
https://bugs.launchpad.net/bugs/1848709
You received this bug notification because you are a member of Ubuntu Package Archive Administrators, which is subscribed to the bug report.
More information about the ubuntu-archive
mailing list