Use link to advisory rather than to the CVE repo

This commit is contained in:
Brendan Abolivier 2021-05-11 14:09:46 +01:00
parent 86fb71431c
commit d1473f7362
No known key found for this signature in database
GPG key ID: 1E015C145F1916CD

View file

@ -6,7 +6,7 @@ Due to the security issue highlighted below, server administrators are encourage
Security advisory
-----------------
This release fixes a denial of service attack ([CVE-2021-29471](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29471)) against Synapse's push rules implementation. Server admins are encouraged to upgrade.
This release fixes a denial of service attack ([CVE-2021-29471](https://github.com/matrix-org/synapse/security/advisories/GHSA-x345-32rc-8h85)) against Synapse's push rules implementation. Server admins are encouraged to upgrade.
Internal Changes
----------------