Headline
CVE-2023-45148: fix(ratelimit): Only use memory cache backend for redis by miaulalala · Pull Request #40293 · nextcloud/server
Nextcloud is an open source home cloud server. When Memcached is used as memcache.distributed
the rate limiting in Nextcloud Server could be reset unexpectedly resetting the rate count earlier than intended. Users are advised to upgrade to versions 25.0.11, 26.0.6 or 27.1.0. Users unable to upgrade should change their config setting memcache.distributed
to \OC\Memcache\Redis
and install Redis instead of Memcached.
AndyScherzinger AndyScherzinger approved these changes
bigcat88 bigcat88 approved these changes
provokateurin provokateurin approved these changes
Fenn-CS Awaiting requested review from Fenn-CS Fenn-CS was automatically assigned from nextcloud/server-backend
sorbaugh Awaiting requested review from sorbaugh sorbaugh was automatically assigned from nextcloud/server-backend
come-nc Awaiting requested review from come-nc come-nc was automatically assigned from nextcloud/server-backend