diff options
author | Andrej Shadura <andrewsh@debian.org> | 2022-06-28 19:14:05 +0200 |
---|---|---|
committer | Andrej Shadura <andrewsh@debian.org> | 2022-06-28 19:14:05 +0200 |
commit | 9a38209195a45ca59fbc8fd1a7726333d5e69c67 (patch) | |
tree | 87928e5bd0242c66134a5fb1f1cd973f4f0b36b2 | |
parent | bf8392b82f555f4f1bf0ad8bf1d0496753831293 (diff) |
Update the changelogdebian/1.61.1-1
-rw-r--r-- | debian/changelog | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog index 2693a0c4..615c8aae 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,14 @@ +matrix-synapse (1.61.1-1) unstable; urgency=medium + + * New upstream release. + * SECURITY ISSUE: GHSA-22p3-qrh9-cx32 / CVE-2022-31052. + Synapse instances with the url_preview_enabled homeserver config option + set to true are affected. URL previews of some web pages can lead to + unbounded recursion, causing the request to either fail, or in some + cases crash the running Synapse process. + + -- Andrej Shadura <andrewsh@debian.org> Tue, 28 Jun 2022 19:13:32 +0200 + matrix-synapse (1.61.0-3) unstable; urgency=medium * Use execute_after_*. |