{"uuid": "dc73cd54-66e9-4935-97c8-a82b26991e4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42462", "type": "seen", "source": "https://bsky.app/profile/hollo.hollo.social.ap.brid.gy/post/3mmcinnvfjdd2", "content": "### Hollo security updates: 0.7.17, 0.8.6, and 0.9.1\n\nIf you run Hollo, update to a patched release now. CVE-2026-42462 affects Fedify's Linked Data Signature handling, and Hollo depends on Fedify for ActivityPub federation.\n\nFedify verifies incoming ActivityPub activities with several [\u2026]", "creation_timestamp": "2026-05-20T18:10:13.960097Z"}