CVE-2022-21682
CVE-2022-21682 (Flatpak-builder path traversal) Affects Flatpak and its builder prior to a fix: versions before 1.12.3 and 1.10.6. The vulnerability arises when flatpak-builder applies finish-args at finalization, allowing the build directory to inherit permissions declared in the manifest; with ...