Conduit (Rust Matrix Server) v0.10.11 another critical vulnerability
4 months ago
- #Matrix
- #Conduit
- #Security
- Conduit updates involve stopping, installing the new version, and restarting.
- Critical security vulnerabilities fixed in versions v0.10.11 and v0.10.10, requiring immediate upgrade.
- Room version 12 support added in v0.10.8, addressing CVE-2025-49090 and other issues.
- Media handling improvements in v0.10.0, including de-duplication and retention policies.
- Authenticated media implemented in v0.9.0, with breaking config changes.
- Critical vulnerability in v0.8.0 affecting public homeservers, requiring immediate action.
- Security fixes and feature updates in v0.7.0, including room version 11 support.
- Threads, spaces, and registration tokens introduced in v0.6.0.
- Restricted room joining and E2EE fixes in v0.5.0.
- Room versions 3 to 9 supported in v0.4.0, with sync performance improvements.
- Server ACLs and RocksDB backend introduced in v0.3.0.
- Initial release in v0.2.0 with most Matrix Spec features implemented.