CVE-2018-21018

CVE-2018-21018

Mastodon before 2.6.3 mishandles timeouts of incompletely established sessions.

Source: CVE-2018-21018