DescriptionThe on_get_missing_events function in handlers/federation.py in Matrix Synapse before 0.31.1 has a security bug in the get_missing_events federation API where event visibility rules were not applied correctly.
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having not set severity.SUSE Bugzilla entry: 1096833 [IN_PROGRESS] No SUSE Security Announcements cross referenced.
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE Leap 15.0|| ||Patchnames: