AVG-1943 log

Package matrix-synapse
Status Fixed
Severity Medium
Type denial of service
Affected 1.29.0-1
Fixed 1.33.2-1
Current 1.37.1-1 [community]
Ticket FS#70801
Created Tue May 11 15:51:58 2021
Issue Severity Remote Type Description
CVE-2021-29471 Medium Yes Denial of service
In Synapse before version 1.33.2 "Push rules" can specify conditions under which they will match, including `event_match`, which matches event content...
Date Advisory Package Type
25 May 2021 ASA-202105-19 matrix-synapse denial of service