Update Discourse to fix a security flaw

EN :uk:

A discourse vulnerabilitie has been published 8 days ago about a remote code execution through a public endpoint, it is highly recommended to upgrade the Discourse application to version 2.7.9+.

RCE via malicious SNS subscription payload 路 Advisory 路 discourse/discourse 路 GitHub

Note: the fix should be available in yunohost apps catalog in 2 or 3 hours.

FR :fr:

Une faille sur Discourse a 茅t茅 publi茅e il y a 8 jours concernant l鈥檈xecution de code distant 脿 travers un point d鈥橝PI public, il est fortement recommand茅 de mettre 脿 niveau l鈥檃pplication Discourse vers la version 2.7.9+.

RCE via malicious SNS subscription payload 路 Advisory 路 discourse/discourse 路 GitHub

4 Likes