Follow

Critical security vulnerabilities found in Mastodon. Admins should patch ASAP to 2.4.4.

github.com/tootsuite/mastodon/

---

Currently, instances.social shows at least 1476 unpatched servers. (3872 servers don't disclose their version.)

ยท 0 ยท 92 ยท 34

@yuvadm @infosechandbook @yair ื”ืฉืจืช ื™ื•ืฉื‘ ื›ื™ื•ื ืืฆืœ ื”ื•ื’ื•, ืฉืžืฆื™ืข ื ื™ื”ื•ืœ ืฉืจืชื™ ืžืกื˜ื•ืฉ ื‘ืชื•ืจ ืฉื™ืจื•ืช. ื”ื•ื ืชืžื™ื“ ื‘ื™ืŸ ื”ืจืืฉื•ื ื™ื ืœืขื“ื›ืŸ :)

@infosechandbook @NoGodsNoSenpais
I like how the implicit definition of 'patch' here is 'install most recent version' rather than, you know, a patch (which is not provided at this link).

@jeffcliff The provided link directly points to version 2.4.4 which is the patched version of Mastodon.

Sign in to participate in the conversation
Mastodon

mastodon.at is a microblogging site that federates with most instances on the Fediverse.