Prior to versions 1.14.0 and 1.15.10, Flatpak allows a malicious or compromised app to write outside its sandboxed directory using the `--persist=subdir` option. This can lead to integrity and confidentiality attacks
Reporter | Title | Published | Views | Family All 92 |
---|---|---|---|---|
OSV | flatpak - security update | 14 Aug 202400:00 | – | osv |
OSV | flatpak-1.15.10-1.1 on GA media | 20 Aug 202400:00 | – | osv |
OSV | Important: bubblewrap and flatpak security update | 5 Sep 202400:00 | – | osv |
OSV | Red Hat Security Advisory: bubblewrap and flatpak security update | 17 Sep 202401:14 | – | osv |
OSV | Red Hat Security Advisory: bubblewrap and flatpak security update | 17 Sep 202401:14 | – | osv |
OSV | Red Hat Security Advisory: bubblewrap and flatpak security update | 17 Sep 202401:15 | – | osv |
OSV | Important: bubblewrap and flatpak security update | 12 Nov 202400:00 | – | osv |
OSV | Red Hat Security Advisory: bubblewrap and flatpak security update | 12 Nov 202418:07 | – | osv |
OSV | bubblewrap, flatpak vulnerability | 30 Sep 202418:14 | – | osv |
OSV | CVE-2024-42472 | 15 Aug 202419:15 | – | osv |
OS | OS Version | Architecture | Package | Package Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | flatpak | 1.14.10-1~deb12u1 | flatpak_1.14.10-1~deb12u1_all.deb |
Debian | 11 | all | flatpak | 1.10.8-0+deb11u2 | flatpak_1.10.8-0+deb11u2_all.deb |
Debian | 999 | all | flatpak | 1.14.10-1 | flatpak_1.14.10-1_all.deb |
Debian | 13 | all | flatpak | 1.14.10-1 | flatpak_1.14.10-1_all.deb |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo