-
Notifications
You must be signed in to change notification settings - Fork 358
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Pre-announce coordinated release. (#1074)
- Loading branch information
Showing
1 changed file
with
17 additions
and
0 deletions.
There are no files selected for viewing
17 changes: 17 additions & 0 deletions
17
gatsby/content/blog/2021/09/2021-09-10-vulnerability-pre-disclosure.mdx
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,17 @@ | ||
--- | ||
date: '2021-09-10' | ||
title: 'Pre-disclosure: upcoming critical fix for several popular Matrix clients' | ||
categories: | ||
- Security | ||
author: Matrix Security | ||
--- | ||
|
||
Hi all, | ||
|
||
A critical security vulnerability impacting several popular Matrix clients and libraries was recently discovered. A coordinated security release of the affected components will be happening in the afternoon (from an UTC perspective) of **Monday, Sept 13th**. | ||
|
||
We will be reaching out to downstream packagers to ensure they can prepare patched versions of affected packages at the time of the release. The details of the vulnerability will be disclosed in a blog post on the day of the release. There is so far no evidence of the vulnerability being exploited in the wild. | ||
|
||
**Please be prepared to upgrade as soon as the patched versions are released.** | ||
|
||
Thank you for your patience while we work to resolve this issue. |