#ResPublicae has been upgraded to Mastodon v3.5.9, a security release.
The upgrade was painless. Thank you #MastoDev and especially @Claire[@]sitedethib.com for offering backports to pre-v4 releases and for the clear instructions.
While the details of CVE-2023-36459 have not been published yet, the title suggests the vulnerability may be exploitable even on an instance like ours where no third party can directly post anything.
And we're now on v3.5.10.
More information on the importance of the v3.5.9 release:
A Mastodon forum for the discussion of European Union matters. Not run by the EU. Powered by PleromaBot, Nitter and PrivacyDev.net.