CLSA-2025-1741291194 flatpak: Fix of CVE-2024-42472

CVE-2024-42472: patch Flatpak to include the new --bind-fd option in bubblewrap to prevent symlink attacks on persistent directories...

CLSA-2025-1741125454 bubblewrap: Fix of CVE-2024-42472

fix CVE-2024-42472 in flatpak by adding --bind-fd and --ro-bind-fd options in in bubblewrap, enabling race-free bind mounts using an OPATH file descriptor instead of a direct path...

PT-2017-13467 · D Link · D-Link Dir-850L

Name of the Vulnerable Software and Affected Versions: D-Link DIR-850L REV. A versions through FW114WWb07 h2ab beta1 Description: The issue allows remote attackers to change the DNS configuration via a series of requests, due to the failure to prevent unauthenticated nonce-guessing attacks in the...

CVE-1999-1499

named in ISC BIND 4.9 and 8.1 allows local users to destroy files via a symlink attack on 1 nameddump.db when root kills the process with a SIGINT, or 2 named.stats when SIGIOT is used...