| tag name | v1.105.1 (620125b4a9d0af555369c45154c679f7877220b4) |
| tag date | 2024-04-23 15:59:50 +0100 |
| tagged by | Erik Johnston <erik@matrix.org> |
| tagged object | commit 20c9e19519... |
| download | synapse-1.105.1.tar.xz |
|---|
The following issues are fixed in 1.105.1.
- [GHSA-3h7q-rfh9-xm4v](https://github.com/element-hq/synapse/security/advisories/GHSA-3h7q-rfh9-xm4v) / [CVE-2024-31208](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31208) — High Severity Weakness in auth chain indexing allows DoS from remote room members through disk fill and high CPU usage. See the advisories for more details. If you have any questions, email security@element.io. -----BEGIN PGP SIGNATURE----- iQFEBAABCgAuFiEEBTGR3/RnAzBGUif3pULk7RsPrAkFAmYnzOYQHGVyaWtAbWF0 cml4Lm9yZwAKCRClQuTtGw+sCQtWCACFU9LlCPO2aOqHTRwnJUAiEtOI3IQeMcYA 5kTzetOMuaHlJ2rlwO1UrK+aBKyB7QaGfSmWH/1x674v/hc4KjiX1WJPpFuxoXmG abC2z/d4CfK4N2qIZ+y8sqSJmUz4yGfIEdUJzW6r8v8nxMYwdYogNm33+kD5e/GG fc3h4tvZ/lptwfVfUtsKDU7CZb3lVsEK0eGmv43eKcnzU9DZH+hOHovZiuPJRI/b xkv3ZoD67FPxtwBVq1n+hkZ+0leqG3MG5czB6w9XmOowpEa9CB3OEZUWnVeRqomS LDqhlnGwPvDklfsUk2exkml9wmrLbUOHvoovQKYESb4hP5uNVzmt =ZUyD -----END PGP SIGNATURE-----