matrix-sdk-crypto security advisory: sender of encrypted events can be spoofed by homeserver administrator (from version 0.8.0 to 0.11.0)
matrix-sdk-crypto security advisory: sender of encrypted events can be spoofed by homeserver administrator (from version 0.8.0 to 0.11.0)
github.com Sender of encrypted events can be spoofed by homeserver administrator
### Summary matrix-sdk-crypto since version 0.8.0 up to 0.11.0 does not correctly validate the sender of an encrypted event. Accordingly, a malicious homeserver operator can modify events served...
0
comments