First published: Mon Nov 15 2021(Updated: )
Discourse is a platform for community discussion. In affected versions a maliciously crafted request could cause an error response to be cached by intermediate proxies. This could cause a loss of confidentiality for some content. This issue is patched in the latest stable, beta and tests-passed versions of Discourse.
Credit: security-advisories@github.com security-advisories@github.com
Affected Software | Affected Version | How to fix |
---|---|---|
Discourse Discourse | <=2.7.9 | |
Discourse Discourse | =2.8.0-beta1 | |
Discourse Discourse | =2.8.0-beta2 | |
Discourse Discourse | =2.8.0-beta3 | |
Discourse Discourse | =2.8.0-beta4 | |
Discourse Discourse | =2.8.0-beta5 | |
Discourse Discourse | =2.8.0-beta6 | |
Discourse Discourse | =2.8.0-beta7 | |
<=2.7.9 | ||
=2.8.0-beta1 | ||
=2.8.0-beta2 | ||
=2.8.0-beta3 | ||
=2.8.0-beta4 | ||
=2.8.0-beta5 | ||
=2.8.0-beta6 | ||
=2.8.0-beta7 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.