senooken JP Social
  • FAQ
  • Login
senooken JP Socialはsenookenの専用分散SNSです。

  • Public

    • Public
    • Network
    • Groups
    • Popular
    • People

Conversation

Notices

  1. 椎葉じーん (cybergene@mstdn.ikebuku.ro@mstdn.ikebuku.ro)'s status on Monday, 15-Oct-2018 14:13:09 JST 椎葉じーん 椎葉じーん

    ぱっと調べた限り、Mastodon v2.5.1とv2.5.2で行われた脆弱性対応の中で、CVE番号が採番されているのはCVE-2018-14404とCVE-2018-14567
    大本はnokigiriが使ってるlibxml2の脆弱性ですね
    https://github.com/tootsuite/mastodon/pull/8881

    In conversation Monday, 15-Oct-2018 14:13:09 JST from mstdn.ikebuku.ro permalink

    Attachments

    1. [Security] Bump nokogiri from 1.8.4 to 1.8.5 by dependabot · Pull Request #8881 · tootsuite/mastodon
      from GitHub
      Bumps nokogiri from 1.8.4 to 1.8.5. This update includes security fixes. Vulnerabilities fixed Sourced from The Ruby Advisory Database. Nokogiri gem, via libxml2, is affected by multiple vulnerab...
    • localYouser :mosaic:, fnya@よろず屋ドン and S. Nagashima repeated this.

Feeds

  • Activity Streams
  • RSS 2.0
  • Atom
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

senooken JP Social is a social network, courtesy of senooken. It runs on GNU social, version 2.0.2-beta0, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All senooken JP Social content and data are available under the Creative Commons Attribution 3.0 license.