| tag name | v1.33.2 (2bcd5a519b1792319831105ef904b7a8f494cfce) |
| tag date | 2021-05-11 14:12:20 +0100 |
| tagged by | Brendan Abolivier <babolivier@matrix.org> |
| tagged object | commit d1473f7362... |
| download | synapse-1.33.2.tar.xz |
|---|
Synapse 1.33.2 (2021-05-11)
=========================== Due to the security issue highlighted below, server administrators are encouraged to update Synapse. We are not aware of these vulnerabilities being exploited in the wild. Security advisory ----------------- This release fixes a denial of service attack ([CVE-2021-29471](https://github.com/matrix-org/synapse/security/advisories/GHSA-x345-32rc-8h85)) against Synapse's push rules implementation. Server admins are encouraged to upgrade. Internal Changes ---------------- - Unpin attrs dependency. ([\#9946](https://github.com/matrix-org/synapse/issues/9946)) -----BEGIN PGP SIGNATURE----- iQIzBAABCAAdFiEEdVkXOgzrGzds0jtrHgFcFF8ZFs0FAmCagsoACgkQHgFcFF8Z Fs2EDQ//fLE/cqkDhHNMllYmA7gkaM/7Y7yY2GyZQRJqD5a41yPh4+zWG5Am6NmB vUUnIw9hna4IKdLFB7C5oCcaDJHKkco7hwLNUYZdNrJGBd191KV2gDA7npphmKQc iLNLSEl5Tyybhq5+waugEpLPdLxYUsYU3PoWnArBYgeeVYt1GkOeRDIk/J4i0AhC 9lZGP2/AoJVsdFI60Tsr5214sdiB8jR+8rAv3v1jfKdQ5k3/0HGBQlTk6AsdRJcn g356EDOX690SRYdBaA8J85IYguB2loH/y5NNra0tK2QsJT7zG/h0g53e+dB5ydPK x5dokZ+sS6DSrxNBCit1/ZLIhwJAmikZiWGc/T+MVXRhMuQA8sJDsHDSzMZhxLFs AJUHBXLx2UWhbjpnEZBL5/9jTcCZsgKlF4xxe9P1/eGzp2xa+5hZNnu0pC3NRple B6N6Nyj7jwX1diGtcj+4U385K52ZtNP5h4nhxBhiDI0DJQrFo3TmBufiRqk71XSk kMSdgRFlYjAkoPPO2GEaOE+fVVE4s1r4ScnneZV8O734baCZNpbW1ZQzGVD9LRaI J3uZ5Bmn6sBIk4n3B8RuL5wOMMUSOr1ZcvM3JByooz6jxPJwEBb4yezXYumCniwL cW/IEYcepv2J3opS0H+kEbWXuAuCDDyQHzOuEjzNJHL5P62VzZU= =YbqD -----END PGP SIGNATURE-----