From 3228a3abd1d51fd9236cea4d02b18acd1854d78d Mon Sep 17 00:00:00 2001 From: "J. Ryan Stinnett" Date: Wed, 14 Apr 2021 12:43:49 +0100 Subject: [PATCH] Update security notice New information came to light after the original report, so this updates the notice to match the latest details. --- CHANGELOG.md | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index bfd055700d..b9a381ce43 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -90,12 +90,12 @@ Changes in [1.7.22](https://github.com/vector-im/element-web/releases/tag/v1.7.2 ## Security notice -Element Web 1.7.22 fixes (by upgrading to matrix-react-sdk 3.15.0) a low +Element Web 1.7.22 fixes (by upgrading to matrix-react-sdk 3.15.0) a moderate severity issue (CVE-2021-21320) where the user content sandbox can be abused to -trick users into opening unexpected documents. The content is opened with a -`blob` origin that cannot access Matrix user data, so messages and secrets are -not at risk. Thanks to @keerok for responsibly disclosing this via Matrix's -Security Disclosure Policy. +trick users into opening unexpected documents after several user interactions. +The content can be opened with a `blob` origin from the Matrix client, so it is +possible for a malicious document to access user messages and secrets. Thanks to +@keerok for responsibly disclosing this via Matrix's Security Disclosure Policy. ## All changes