Ancestors

Toot

Written by Michael Stanclift on 2025-01-21 at 17:04

Mastodon 4.4-alpha.2, 4.3.3, 4.2.15, and 4.1.22 were released 5 days ago to patch a moderate CVE (5.3) that would allow a low complexity, partial denial of service attack. https://github.com/mastodon/mastodon/security/advisories/GHSA-5wxh-3p65-r4g6

As of today:

45% of servers have updated, providing...

78% of active users protection from this issue

[#]mastoadmin who are waiting to update, DO IT. :palpatine: :nike:

=> View attached media | View attached media | View attached media

=> More informations about this toot | More toots from vmstan@vmst.io

Descendants

Written by Michael Stanclift on 2025-01-21 at 17:06

Also just a note for the 5% or so of Mastodon instances still running 4.1.x, it will go end of life and no longer receive updates after April 8.

Many of the underlying dependencies (Ruby & Node) are already unsupported.

[#]mastoadmin

=> More informations about this toot | More toots from vmstan@vmst.io

Proxy Information

Original URL: gemini://mastogem.picasoft.net/thread/113867428287201932
Status Code: Success (20)
Meta: text/gemini
Capsule Response Time: 260.999496 milliseconds
Gemini-to-HTML Time: 1.011424 milliseconds

This content has been proxied by September (3851b).