Synapse: Multiple Vulnerabilities Multiple vulnerabilites have been found in Synapse, the worst of which could result in information leaks. synapse 2024-01-07 2024-01-07 914765 916609 remote 1.96.0 1.96.0

Synapse is a Matrix homeserver written in Python/Twisted.

Multiple vulnerabilities have been discovered in Synapse. Please review the CVE identifiers referenced below for details.

Please review the referenced CVE identifiers for details.

There is no known workaround at this time.

All Synapse users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=net-im/synapse-1.96.0" CVE-2023-41335 CVE-2023-42453 CVE-2023-43796 CVE-2023-45129 ajak graaff