This repository has been archived on 2024-05-31. You can view files and clone it, but cannot push or open issues or pull requests.
authentik/website/docs/security
Jens L aa874dd92a
security: fix CVE-2023-39522 (#6665)
* stages/email: don't disclose whether a user exists or not when recovering

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* update website

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
2023-08-29 19:07:49 +02:00
..
2023-06-cure53.md security: cure53 fix (#6039) 2023-06-22 22:25:04 +02:00
CVE-2022-23555.md website: link CVE and attribute reporter 2022-12-25 14:17:17 +01:00
CVE-2022-46145.md website: link CVE and attribute reporter 2022-12-25 14:17:17 +01:00
CVE-2022-46172.md website: link CVE and attribute reporter 2022-12-25 14:17:17 +01:00
CVE-2023-26481.md security: fix CVE-2023-26481 (#4832) 2023-03-02 20:15:33 +01:00
CVE-2023-36456.md security: fix CVE-2023-36456 (#6171) 2023-07-06 18:16:26 +02:00
CVE-2023-39522.md security: fix CVE-2023-39522 (#6665) 2023-08-29 19:07:49 +02:00
policy.mdx root: rework and expand security policy 2022-11-28 12:10:53 +01:00