Dismissed
by @LeSuisse Activity log
- Created automatic suggestion
-
@LeSuisse
removed
3 packages
- python312Packages.mattermostdriver
- python313Packages.mattermostdriver
- mattermost-desktop
- @LeSuisse dismissed
DoS from quadratic complexity in model.ParseHashtags
Mattermost versions 10.11.x <= 10.11.8 fail to validate input size before processing hashtags which allows an authenticated attacker to exhaust CPU resources via a single HTTP request containing a post with thousands space-separated tokens
Affected products
Mattermost
- ==10.11.9
- ==11.2.0
- =<10.11.8
Matching in nixpkgs
pkgs.mattermost
Mattermost is an open source platform for secure collaboration across the entire software development lifecycle
pkgs.mattermostLatest
Mattermost is an open source platform for secure collaboration across the entire software development lifecycle
Package maintainers
-
@numinit Morgan Jones <me+nixpkgs@numin.it>
-
@fsagbuya Florian Agbuya <fa@m-labs.ph>
-
@mgdelacroix Miguel de la Cruz <mgdelacroix@gmail.com>
-
@Kranzes Ilan Joselevich <personal@ilanjoselevich.com>
-
@ryantm Ryan Mulligan <ryan@ryantm.com>