Skip to content

Commit

Permalink
Add GHSA-3h7q-rfh9-xm4v
Browse files Browse the repository at this point in the history
  • Loading branch information
@davidegirardi
davidegirardi committed Aug 30, 2024
1 parent e7ce6ba commit 8c65b47
Showing 1 changed file with 9 additions and 0 deletions.
9 changes: 9 additions & 0 deletions content/security-hall-of-fame/findings.toml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,15 @@ Identified a method to supply arbitrary parameter to sonar-scanner.
"""
project = "matrix-org/sonarcloud-workflow-action"

[[findings]]
date = "2023-06-20"
reporter.name = "Alexey Shchepin"
reporter.link = "https://github.com/alexeyshch"
summary = """
Discovered that weakness in auth chain indexing allowed DoS from remote room members through disk fill and high CPU usage ([GHSA-3h7q-rfh9-xm4v](https://github.com/element-hq/synapse/security/advisories/GHSA-3h7q-rfh9-xm4v)).
"""
project = "Synapse"

[[findings]]
date = "2023-07-31"
reporter.name = "Martin Schobert, Pentagrid AG"
Expand Down

0 comments on commit 8c65b47

Please sign in to comment.