berkeley.edu.pl

Conversation

Julia

where were you when universal activitypub exploit

9

4

2

pancakes

pancakes@meow.company

Reply to @julia@eepy.moe

@julia making alan wake fortnite image edit

0

1

0

gabboman the wafrn dev

gabboman@gabboman.xyz

Reply to @julia@eepy.moe

Edited 3 days ago

Extreme work day my patch will be delayed a few hours

0

1

0

Cyborus

Cyborus@social.cartoon-aa.xyz

Reply to @julia@eepy.moe

@julia IN BED OH NO

0

0

0

Noisytoot

Reply to @julia@eepy.moe

@julia universal? what was the exploit? akkoma did not get an update

2

0

0

Julia

Reply to @noisytoot

@noisytoot can’t disclose yet

idk if akkoma is affected

*oma isn’t real

1

0

1

Baa 🐑

Baa@mk.absturztau.be

Reply to @julia@eepy.moe

@julia activitypub is kill

0

0

0

φ

fiore@brain.worm.pink

Reply to @noisytoot

@noisytoot @julia im pretty sure akkoma is ok

1

0

0

chjara ☭

chjara@akko.tuxcrafting.xyz

Reply to @fiore@brain.worm.pink

@fiore @noisytoot @julia Only things that implement JSON-LD are affected, Pleroma doesn't so it and forks are fine.

0

0

2

dakkar

dakkar@s.thenautilus.net

Reply to @julia@eepy.moe

@noisytoot I’ll just point to https://github.com/mastodon/mastodon/releases/tag/v4.5.10

Fix Linked-Data Signature bypass through JSON-LD graph restructuring features

0

0

0

Sym (public node)

SymTrkl@anarres.family

Reply to @julia@eepy.moe

@julia On Mastodon, where apparently we are apparently safe from this exploit and no admin action is necessary. neobot_this_is_fine /s

0

0

0

desea

Reply to @julia@eepy.moe

@julia at jsonld factory

0

0

0

snowyfox

snowyfox@deadinsi.de

Reply to @julia@eepy.moe

@julia I was eat din ..

0

0

0

Lykrast

lykrast@eldritch.cafe

Reply to @julia@eepy.moe

@julia at least it's not the linux kernel this time

0

0

0