3 matches found
CLSA-2026-1777541348 flatpak: Fix of CVE-2021-43860
CVE-2021-43860: hidden permissions via null byte in metadata file...
Unity Linux 20.1070e Security Update: flatpak (UTSA-2025-680646)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680646 advisory. Flatpak is a Linux application sandboxing and distribution framework. Prior to versions 1.12.3 and 1.10.6, Flatpak doesn't properly validate that the permissions...
UBUNTU-CVE-2021-43860
Flatpak is a Linux application sandboxing and distribution framework. Prior to versions 1.12.3 and 1.10.6, Flatpak doesn't properly validate that the permissions displayed to the user for an app at install time match the actual permissions granted to the app at runtime, in the case that there's a...