stable

flatpak-1.8.5-1.fc32
FEDORA-2021-f807eb480a created by kalev a year ago for Fedora 32

This is a security update that fixes a sandbox escape where a malicious application can execute code outside the sandbox by controlling the environment of the "flatpak run" command when spawning a sub-sandbox.

See the advisory for details: https://github.com/flatpak/flatpak/security/advisories/GHSA-4ppf-fxf6-vxg2

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2021-f807eb480a

This update has been submitted for testing by kalev.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update's test gating status has been changed to 'waiting'.

a year ago

kalev edited this update.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update has been pushed to testing.

a year ago
User Icon pwalter commented & provided feedback a year ago
karma

Works

User Icon newbyte provided feedback a year ago
karma

This update has been submitted for stable by bodhi.

a year ago

This update has been pushed to stable.

a year ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
2
Signed
Content Type
RPM
Test Gating
Builds
1
flatpak-1.8.5-1.fc32
Settings
Unstable by Karma
-3
Stable by Karma
2
Stable by Time
14 days
Dates
submitted
a year ago
in testing
a year ago
in stable
a year ago
modified
a year ago

Automated Test Results

Copyright © 2007-2022 Red Hat, Inc. and others.

Running bodhi-server 6.0.1^202206231147git94e9caa on bodhi-web-50-5vf5t.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy