- cross-posted to:
- sdfpubnix@lemmy.sdf.org
- cross-posted to:
- sdfpubnix@lemmy.sdf.org
You must log in or register to comment.
Not a comment but a question- does this potentially affect Lemmy servers as well?
Directly probably not. Its more likely an implementation issue than a federation issue.
“Using carefully crafted media files, attackers can cause Mastodon’s media processing code to create arbitrary files at any location"
I doubt lemmy and mastodon share image parsing code
I’d not be so confident given just how quickly the rollout happened. Remember, we’re talking only a matter of weeks. (I’m a little more comfortable with things especially with the frequency of updates this far - I’ve installed 2 today)
Lemmy has been in development since 2019. And Lemmy uses pict-rs for images.
