If you are running Vaultwarden, you need to update. There is a CVE
(github.com)
from otter@lemmy.ca to selfhosted@lemmy.world on 11 Nov 2024 15:53
https://lemmy.ca/post/32782416
from otter@lemmy.ca to selfhosted@lemmy.world on 11 Nov 2024 15:53
https://lemmy.ca/post/32782416
This release has fixed some CVE Reports reported by a third party security auditor and we recommend everybody to update to the latest version as soon as possible. The contents of these reports will be disclosed publicly in the future.
cross-posted from: lemmy.eco.br/post/8758930
If you’re using Vaultwarden, you should update because of security fixes.
threaded - newest
Just updated, thanks!
thanks
Thanks for posting
Thanks for the tip
My Vaultwarden is behind a private VPN, but I’ll still update today. Thanks.
Just the reason why I stopped using Vaultwarden and returned to Bitwarden (EDIT: ditching self hosting the password manager).
I’m not specialized in this, can’t update right away, might not know of all security vulnerabilities I have - better leave it for the professionals.
I think what you mean is abandoning self hosting right? Because self hosting Bitwarden would have similar issues if you don’t take the initiative to update.
yes, you’re right. my message was unclear, I see now. While I do self host many other things, I just didn’t want to take the risk regarding my password manager.
Thanks. I logged in immediately to update the image, but luckily it was already updated by watchtower yesterday.