security

Question re: Origin Based Security Model (FEP-fe34)

by

I received a security vulnerability report regarding NodeBB’s handling of Update and Delete activities.

21
6

A ReDoS (Regular Expression Denial of Service) vulnerability has been discovered in Fedify’s HTML parsing code

by

A ReDoS (Regular Expression Denial of Service) vulnerability has been discovered in Fedify’s HTML parsing code. This vulnerability could allow a malicious federated server to cause denial of service by sending specially crafted HTML responses.

0
2