2379350 – (CVE-2025-53549) CVE-2025-53549 matrix-sdk: Matrix Rust SDK allows SQL injection in the EventCache implementation

Bug 2379350 (CVE-2025-53549) - CVE-2025-53549 matrix-sdk: Matrix Rust SDK allows SQL injection in the EventCache implementation

Summary: CVE-2025-53549 matrix-sdk: Matrix Rust SDK allows SQL injection in the EventC...

Keywords:
Status:	NEW
Alias:	CVE-2025-53549
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2379414
Blocks:
TreeView+	depends on / blocked

Reported:	2025-07-10 19:01 UTC by OSIDB Bzimport
Modified:	2025-07-11 12:38 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-07-10 19:01:14 UTC

The Matrix Rust SDK is a collection of libraries that make it easier to build Matrix clients in Rust. An SQL injection vulnerability in the EventCache::find_event_with_relations method of matrix-sdk 0.11 and 0.12 allows malicious room members to execute arbitrary SQL commands in Matrix clients that directly pass relation types provided by those room members into this method, when used with the default sqlite-based store backend. Exploitation is unlikely, as no known clients currently use the API in this manner. This vulnerability is fixed in 0.13.

Note You need to log in before you can comment on or make changes to this bug.