Post AXXYtfDGwtcTZ5GDwG by twotwenty@qoto.org
 (DIR) More posts by twotwenty@qoto.org
 (DIR) Post #AXXYII4I2QiJ4GEpl2 by twotwenty@qoto.org
       2023-07-10T04:31:18Z
       
       0 likes, 0 repeats
       
       @freemo CVE-2023-36460 AKA TootRoot9.9 CVE score
       
 (DIR) Post #AXXYIImbNg9vHgyDpI by freemo@qoto.org
       2023-07-10T04:31:45Z
       
       0 likes, 0 repeats
       
       @twotwenty huh?
       
 (DIR) Post #AXXYm7kkxCKHlPKM9g by twotwenty@qoto.org
       2023-07-10T04:37:14Z
       
       0 likes, 0 repeats
       
       @freemo A new critical vulnerability found in mastadon that got a 9.9 CVE which apparently is not yet found in the wild but when fully disclosed will be root access from your toot'n server.
       
 (DIR) Post #AXXYpCdbFX5fmWRq1A by freemo@qoto.org
       2023-07-10T04:37:45Z
       
       0 likes, 0 repeats
       
       @twotwenty Oh thanks, I will keep a close eye on it.
       
 (DIR) Post #AXXYtfDGwtcTZ5GDwG by twotwenty@qoto.org
       2023-07-10T04:38:36Z
       
       0 likes, 0 repeats
       
       @freemo apparently you will want to get to 4.1.2 ASAP... usually vulns like this come with a few patches over the following xyz short period of time.
       
 (DIR) Post #AXXZ23UyXWktCZXhj6 by freemo@qoto.org
       2023-07-10T04:40:02Z
       
       0 likes, 0 repeats
       
       @twotwenty well our version doesnt track masto anymore, but I will be pulling a lot in in the near future as im working on the next version.
       
 (DIR) Post #AXXchJa7wouKomJlwG by Pat@qoto.org
       2023-07-10T05:21:11Z
       
       0 likes, 0 repeats
       
       @freemo @twotwenty It apparently was introduced in v3.5.0 and fixed (patched) from v3.5.9 up.https://nvd.nist.gov/vuln/detail/CVE-2023-36460