vulnerability
FreeBSD: VID-07c0d782-f758-11ec-acaa-901b0e9408dc (CVE-2022-31052): py-matrix-synapse -- unbounded recursion in urlpreview
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 3 | (AV:N/AC:M/Au:S/C:N/I:N/A:P) | Jun 29, 2022 | Nov 4, 2022 | Dec 10, 2025 |
Severity
3
CVSS
(AV:N/AC:M/Au:S/C:N/I:N/A:P)
Published
Jun 29, 2022
Added
Nov 4, 2022
Modified
Dec 10, 2025
Description
Matrix developers report: This release fixes a vulnerability with Synapse's URL preview feature. URL previews of some web pages can lead to unbounded recursion, causing the request to either fail, or in some cases crash the running Synapse process. Note that: Homeservers with the url_preview_enabled configuration option set to false (the default value) are unaffected. Instances with the enable_media_repo configuration option set to false are also unaffected, as this also disables the URL preview functionality.
Solutions
freebsd-upgrade-package-py37-matrix-synapsefreebsd-upgrade-package-py38-matrix-synapsefreebsd-upgrade-package-py39-matrix-synapsefreebsd-upgrade-package-py310-matrix-synapsefreebsd-upgrade-package-py311-matrix-synapse
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.