- Reported
-
- Issued
-
- Package
-
matrix-sdk-crypto
(crates.io)
- Type
-
Vulnerability
- Aliases
-
- References
-
- Patched
-
- Unaffected
-
Description
The matrix-sdk-crypto crate before 0.16.1 is missing a check for the sender's
user ID when decrypting an Olm-encrypted to-device message containing the
sender_device_keys property.
This could be exploited to spoof the sender of an encrypted to-device message,
but only if the attacker colludes with (or is) the homeserver operator.
Advisory available under CC0-1.0
license.