VYPR

Bitnami package

mastodon

pkg:bitnami/mastodon

Vulnerabilities (42)

  • CVE-2022-24307Feb 3, 2022
    affected < 3.3.2fixed 3.3.2

    Mastodon before 3.3.2 and 3.4.x before 3.4.6 has incorrect access control because it does not compact incoming signed JSON-LD activities. (JSON-LD signing has been supported since version 1.6.0.)

  • CVE-2022-0432Feb 2, 2022
    affected < 3.5.0fixed 3.5.0

    Prototype Pollution in GitHub repository mastodon/mastodon prior to 3.5.0.

Page 3 of 3