Critical TootRoot Bug Hijack Mastodon Servers

 

Mastodon, the decentralized social networking platform that emphasizes freedom and open-source principles, has recently addressed several vulnerabilities, including a critical one with potentially severe consequences. This particular vulnerability enabled hackers to exploit specially designed media files, allowing them to generate arbitrary files on the server. However, the Mastodon team has taken prompt action to patch these vulnerabilities and enhance the platform’s security. 
Mastodon is a software that facilitates the operation of self-hosted social networking services, and it is freely available and open-source. The platform encompasses microblogging functionalities, similar to those found on Twitter. Notably, Mastodon operates through numerous independent nodes, referred to as instances, each possessing its distinct set of guidelines, regulations, privacy preferences, and content moderation policies. 
Instances contribute to a diverse ecosystem of interconnected social networks, providing users with a range of choices and experiences.
With a user base of approximately 8.8 million, Mastodon thrives on a network of 13,000 individual servers, also known as instances. These servers are hosted by dedicated volunteers who foster a sense of community while maintaining their unique identities. 
The instances, although separate, are interconnected through federation, enabling diverse communities to coexist and interact with one a

[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.

This article has been indexed from CySecurity News – Latest Information Security and Hacking Incidents

Read the original article: