Security Vulnerability detected in Lemmy : fossware

Security Vulnerability detected in Lemmy (4.bp.blogspot.com)

submitted 1 year ago* (last edited 1 year ago) by NettoHikari@social.fossware.space to c/fossware_meta@social.fossware.space

5 comments fedilink hide all child comments

Hey, guys.

Pre-workday-Netto chiming in to inform you that a XSS vulnerability has been found in Lemmy's frontend and that several instances have been compromised.

You can track the issue here.

I implemented the supposed patch and uploaded an ARM64 build that has the patch applied to Docker Hub, if any other instance might need it (use with caution).

Please note that you'll have to log back in, as all active sessions have been terminated.

I'll continue to monitor the situation when I'm at work.

✌️

you are viewing a single comment's thread
view the rest of the comments

[-] NettoHikari@social.fossware.space 1 points 1 year ago* (last edited 1 year ago)

Good idea and thank you. However, you just caught me in the act of setting up a status monitor on another VPS I run at a different provider. Will be up in a couple ~~minutes~~ hours (something else just came in).

this post was submitted on 10 Jul 2023

24 points (100.0% liked)

Meta

About

Rules

🧾 General Instance Rules apply

👮 Only Staff Members can create Threads here

🔗 Other Resources