Flatpak prior to 1.0.7, and 1.1.x and 1.2.x prior to 1.2.3, exposes /proc in the apply_extra script sandbox, which allows malicious users to modify a host-side executable file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
flatpak flatpak |
||
debian debian linux 9.0 |
||
debian debian linux 10.0 |
||
redhat enterprise linux desktop 7.0 |
||
redhat enterprise linux server aus 7.6 |
||
redhat enterprise linux workstation 7.0 |
||
redhat enterprise linux server tus 7.6 |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux server eus 7.6 |