Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
matrix-sdk-base is vulnerable to DoS via custom m.room.join_rules event values
Vulnerability Description
matrix-sdk-base is the base component to build a Matrix client library. Versions 0.14.1 and prior are unable to handle responses that include custom m.room.join_rules values due to a serialization bug. This can be exploited to cause a denial-of-service condition, if a user is invited to a room with non-standard join rules, the crate's sync process will stall, preventing further processing for all rooms. This is fixed in version 0.16.0.
CVSS Information
N/A
Vulnerability Type
对异常条件的处理不恰当
Vulnerability Title
Matrix Rust SDK 安全漏洞
Vulnerability Description
Matrix Rust SDK是The Matrix.org Foundation开源的一个基于Rust的Matrix客户端服务器开发工具包。 Matrix Rust SDK 0.14.1及之前版本存在安全漏洞,该漏洞源于序列化错误,可能导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A