Security disclosure for matrix-js-sdk (CVE-2024-47080) and matrix-react-sdk (CVE-2024-47824)
Security disclosure for matrix-js-sdk (CVE-2024-47080) and matrix-react-sdk (CVE-2024-47824)
matrix.org Security disclosure for matrix-js-sdk (CVE-2024-47080) and matrix-react-sdk (CVE-2024-47824)
Matrix, the open protocol for secure decentralised communications
3
comments
I don't know if Element Web/Desktop was affected by the vulnerabilities in the title, but another one (also announced today) is fixed in Element Web/Desktop v1.11.81.
https://github.com/element-hq/element-web/security/advisories/GHSA-3jm3-x98c-r34x
Nice backdoors)
I mean Matrix was intiated by Israeli intelligence so not unreasonable