Lucene search
K

51 matches found

Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.4 views

PT-2026-31705

Name of the Vulnerable Software and Affected Versions flatpak-builder versions 1.4.5 through 1.4.7 Description flatpak-builder, a tool for building flatpaks from source, contains a flaw where the 'license-files' manifest key can be exploited to read arbitrary files from the host system and includ...

7.1CVSS5.8AI score0.00288EPSS
Exploits1References10
CNNVD
CNNVD
added 2026/04/09 12:0 a.m.8 views

flatpak-builder 路径遍历漏洞

flatpak-builder is an Open Source Flatpak application build tool developed by Flatpak. Versions of flatpak-builder from 1.4.5 to 1.4.8 had a path traversal vulnerability. This vulnerability stemmed from insufficient path parsing and validation of the keys in the license-files list, which could...

7.1CVSS5.9AI score0.00288EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : flatpak-builder-1.0.14-2.el8 (AXSA:2022-4428:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2022-4428:01 advisory. flatpak: flatpak-builder --mirror-screenshots-url can access files outside the build directory CVE-2022-21682 Tenable has extracted the preceding description...

7.7CVSS5.6AI score0.01666EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2025/05/07 7:13 p.m.6 views

flatpak-builder bug fix and enhancement update

An update is available for flatpak-builder. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...

6.8AI score
Exploits0
Rockylinux
Rockylinux
added 2025/05/07 7:11 p.m.5 views

flatpak-builder bug fix and enhancement update

An update is available for flatpak-builder. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...

6.8AI score
Exploits0
OSV
OSV
added 2024/09/16 7:35 a.m.8 views

RHSA-2022:7458 Red Hat Security Advisory: flatpak-builder security and bug fix update

Bulletin has no description...

7.7CVSS6.8AI score0.01666EPSS
Exploits0References10
OSV
OSV
added 2024/06/15 12:0 a.m.10 views

OPENSUSE-SU-2024:11755-1 flatpak-builder-1.2.2-1.1 on GA media

These are all security issues fixed in the flatpak-builder-1.2.2-1.1 package on the GA media of openSUSE Tumbleweed...

7.7CVSS7AI score0.01666EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 3:29 a.m.2 views

SUSE CVE-2022-21682

Flatpak is a Linux application sandboxing and distribution framework. A path traversal vulnerability affects versions of Flatpak prior to 1.12.3 and 1.10.6. flatpak-builder applies finish-args last in the build. At this point the build directory will have the full access that is specified in the...

6.5CVSS7AI score0.01666EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2022/11/17 12:0 a.m.22 views

Rocky Linux 8 : flatpak-builder (RLSA-2022:7458)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:7458 advisory. - Flatpak is a Linux application sandboxing and distribution framework. A path traversal vulnerability affects versions of Flatpak prior to 1.12.3 and 1.10.6...

7.7CVSS7.2AI score0.01666EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/11/15 12:0 a.m.32 views

Oracle Linux 8 : flatpak-builder (ELSA-2022-7458)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2022-7458 advisory. - Fix CVE-2022-21682 2042007 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...

7.7CVSS7.1AI score0.01666EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2022/11/15 12:0 a.m.31 views

flatpak-builder security and bug fix update

1.0.14-2 - Fix CVE-2022-21682 2042007 1.0.14-1 - Update to 1.0.14 2047312...

7.7CVSS1.2AI score0.01666EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/11/09 12:0 a.m.22 views

CentOS 8 : flatpak-builder (CESA-2022:7458)

The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2022:7458 advisory. - flatpak: flatpak-builder --mirror-screenshots-url can access files outside the build directory CVE-2022-21682 Note that Nessus has not tested for this issue b...

7.7CVSS7.1AI score0.01666EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2022/11/08 9:51 a.m.27 views

Moderate: Red Hat Security Advisory: flatpak-builder security and bug fix update

An update for flatpak-builder is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.7CVSS6.8AI score0.01666EPSS
Exploits0References4
Rockylinux
Rockylinux
added 2022/11/08 6:20 a.m.36 views

flatpak-builder security and bug fix update

An update is available for flatpak-builder. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Flatpak-builder is a tool for building flatpaks from sources. Securit...

7.7CVSS6.8AI score0.01666EPSS
Exploits0
OSV
OSV
added 2022/11/08 6:20 a.m.24 views

RLSA-2022:7458 Moderate: flatpak-builder security and bug fix update

Flatpak-builder is a tool for building flatpaks from sources. Security Fixes: flatpak: flatpak-builder --mirror-screenshots-url can access files outside the build directory CVE-2022-21682 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other...

7.7CVSS6.9AI score0.01666EPSS
Exploits0References3
AlmaLinux
AlmaLinux
added 2022/11/08 12:0 a.m.25 views

Moderate: flatpak-builder security and bug fix update

Flatpak-builder is a tool for building flatpaks from sources. Security Fixes: flatpak: flatpak-builder --mirror-screenshots-url can access files outside the build directory CVE-2022-21682 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other...

7.7CVSS6.8AI score0.01666EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/11/08 12:0 a.m.29 views

RHEL 8 : flatpak-builder (RHSA-2022:7458)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:7458 advisory. Flatpak-builder is a tool for building flatpaks from sources. Security Fixes: flatpak: flatpak-builder --mirror-screenshots-url can access files...

7.7CVSS7.1AI score0.01666EPSS
Exploits0References7
OSV
OSV
added 2022/11/08 12:0 a.m.26 views

ALSA-2022:7458 Moderate: flatpak-builder security and bug fix update

Flatpak-builder is a tool for building flatpaks from sources. Security Fixes: flatpak: flatpak-builder --mirror-screenshots-url can access files outside the build directory CVE-2022-21682 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other...

7.7CVSS7AI score0.01666EPSS
Exploits0References4
OSV
OSV
added 2022/07/30 11:4 a.m.2 views

OESA-2022-1788 flatpak-builder security update

Flatpak-builder is a tool for building flatpaks from sources. Security Fixes: Flatpak is a Linux application sandboxing and distribution framework. A path traversal vulnerability affects versions of Flatpak prior to 1.12.3 and 1.10.6. flatpak-builder applies finish-args last in the build. At this...

7.7CVSS7AI score0.01666EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2022/05/17 5:55 a.m.19 views

new packages: flatpak-builder

An update is available for flatpak-builder. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...

2AI score
Exploits0
Rows per page
Query Builder