Ars TechnicaJul 6, 2023

Mastodon fixes critical “TootRoot” vulnerability allowing node hijacking

Most critical of the bugs allowed attackers to root federated instances.

https://arstechnica.com/security/2023/07/mastodon-fixes-critical-tootroot-vulnerability-allowing-node-hijacking/?utm_brand=arstechnica&utm_social-type=owned&utm_source=mastodon&utm_medium=social

Mastodon fixes critical “TootRoot” vulnerability allowing node hijacking

Most critical of the bugs allowed attackers to root federated instances.

Ars Technica
Show thread(((Jann Gobble)))🏳️‍🌈Jul 6, 2023
@arstechnica Hey @leo, did you install this update on TWiT.social? Just wondering...
Show threadSibshops

@jann @arstechnica @leo

It is fixed in version v4.1.3. Looks like our server is running the latest so it is good.

https://github.com/mastodon/mastodon/releases

"v4.2." · Releases · mastodon/mastodon

Your self-hosted, globally interconnected microblogging community - mastodon/mastodon

GitHub
Jul 7, 2023 at 12:57pmWeb