element-web

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Glossy Matrix collaboration client — web version.
Version 1.10.12-1 [community]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-2639 1.9.6-1 1.9.7-1 Medium Fixed
AVG-2377 1.7.34-2 1.8.4-1 High Fixed
Issue Group Severity Remote Type Description
CVE-2021-44538 AVG-2639 Medium Yes Arbitrary code execution
The olm_session_describe function in Matrix libolm before version 3.2.8 is vulnerable to a buffer overflow. The Olm session object represents a...
CVE-2021-40823 AVG-2377 High Yes Information disclosure
A security has been found in matrix-js-sdk before version 12.4.1, as used by Element Web/Desktop before version 1.8.4. In certain circumstances it may be...

Advisories

Date Advisory Group Severity Type
14 Sep 2021 ASA-202109-5 AVG-2377 High information disclosure