Email or username:

Password:

Forgot your password?
Mastodon Engineering

We are planning to release security patches for versions 3.5, 4.0, 4.1 and nightly next Tuesday, Sep 19, at 15:00 UTC. We encourage server administrators to plan for a timely upgrade to ensure their Mastodon server is protected.

6 comments
Melroy van den Berg

@MastodonEngineering Using Docker :)... So I only need to do:

```
docker compose pull web
docker compose pull sidekiq
docker compose pull streaming
docker compose run --rm web bundle exec rake db:migrate
```

MikeZ

@MastodonEngineering How do you upgrade from the 4.2.0 RC to the latest nightly, please?

💉💉💉🦠JF :debian: :verbike:

@MastodonEngineering At a time when people are running the RC (at your request) it would be nice for it to have a patch as well

( hellekin )

Following the dramatic announcement of @MastodonEngineering that a security release will be available tomorrow at 15:00,

and due to the unavailability of a sysadmin at this time, we're going down for a couple of days.

Enjoy your life without notifications 😗

Yeah, this nvd.nist.gov/vuln/detail/CVE-2 is going to be harmful for a while.

Who can trust their computers now? If we ever could.

Go Up