backups/grapevine
1
0
Fork 0
mirror of https://gitlab.computer.surgery/matrix/grapevine.git synced 2026-02-04 15:51:23 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

validate additional fields for incoming remote membership

Browse source 
This was missed in the initial fix in 9a50c244 ("validate event type and
membership for create_join and create_invite"), but significantly less
impactful than the original vulnerability because it only affects
invite/join events that are able to pass auth/signature checks with our
server's signature. You could use this to forge invite events from a
local user, but not much else.
This commit is contained in:
Olivia Lee 2025-12-30 13:33:39 -08:00 committed by Charles Hall
parent f29aebbcf4
commit 0aae932bc9
2 changed files with 74 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

3
book/changelog.md
View file

@ -63,6 +63,9 @@ This will be the first release of Grapevine since it was forked from Conduit
malicious remote server to trick the local server into signing arbitrary
events via remote leave.
([!206](https://gitlab.computer.surgery/matrix/grapevine/-/merge_requests/206))
10. Fix vulnerability that allows a malicious server to trick a Grapevine server
into signing forged invite/join events from local users.
([!207](https://gitlab.computer.surgery/matrix/grapevine/-/merge_requests/207))
### Removed