community/vaultwarden: upgrade to 1.32.7 (!77387) · Merge requests · alpine / aports

Fabricio Silva requested to merge fabricionaweb/aports:update-vaultwarden into master Dec 20, 2024

Security Fixes

We have yet a few other security fixes for this release. We discovered that groups were able to be edited by any admin from any organization because the organization was not validated or used within the query. This could potentially allow an admin from other organizations to modify, or delete groups from any organization if they know the uuid of the group. We suggest people to update a.s.a.p. to mitigate this risk.

https://github.com/dani-garcia/vaultwarden/releases/tag/1.32.7

community/vaultwarden: upgrade to 1.32.7

Security Fixes

Merge request reports