[ALSA-2023:6518] Moderate: flatpak security, bug fix, and enhancement update
Type:
security
Severity:
moderate
Release date:
2023-11-14
Description:
Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. The following packages have been upgraded to a later upstream version: flatpak (1.12.8). (BZ#2221792) Security Fix(es): * flatpak: TIOCLINUX can send commands outside sandbox if running on a virtual console (CVE-2023-28100) * flatpak: Metadata with ANSI control codes can cause misleading terminal output (CVE-2023-28101) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 flatpak-session-helper-1.12.8-1.el9.aarch64.rpm 2cc9bb7c4e3bf92a16f513212ead6363e4ef8d495777d761495d4ab8a7076a3d
aarch64 flatpak-libs-1.12.8-1.el9.aarch64.rpm 3fdece9dc1ffdab84a18d58625a314de9d16559d6a9482a8f94e4633b499f96a
aarch64 flatpak-devel-1.12.8-1.el9.aarch64.rpm 52eaf143b3e493f2eef36591d3fdcdb81af63550b881b291dfeaa5578bc611a3
aarch64 flatpak-1.12.8-1.el9.aarch64.rpm d5ebd85cdd5c24bc2941f967abee3183308035ab8c37accd3776ef681575db68
i686 flatpak-devel-1.12.8-1.el9.i686.rpm 1a2eeaafe68b54a811748d633320d2779ac69be3426ed22d1fcec1f89880b03e
i686 flatpak-1.12.8-1.el9.i686.rpm 91c7912c3df21c3c615fb28033d767aad06940fb84c7c4fa33afd0d736d68348
i686 flatpak-session-helper-1.12.8-1.el9.i686.rpm aee26ab5244745f23394c81b1f304536c8dbb65a28b05ae7031be4289a396d7e
i686 flatpak-libs-1.12.8-1.el9.i686.rpm f8f06d4bb90e0ffd8d9da6893f12631ae1e65882a023db5174a84e7d642a07bc
noarch flatpak-selinux-1.12.8-1.el9.noarch.rpm 469a239d4c34eae8e286edb3de5360898eb563a04d20528e0b45360fd1b89d9b
ppc64le flatpak-devel-1.12.8-1.el9.ppc64le.rpm 0a0112a64512a88bd3bfbb3485a64b4d30b706932feb0809dd03141f3b2b5fad
ppc64le flatpak-1.12.8-1.el9.ppc64le.rpm 730e2483daa3eb84a2bf04640c0f8a0d8c6fa02bd6d46555fbc136885775d168
ppc64le flatpak-session-helper-1.12.8-1.el9.ppc64le.rpm 99ec158a47bc3615967ddcd9df977ca2ebd1fbda83f0266ed1c715783f525c74
ppc64le flatpak-libs-1.12.8-1.el9.ppc64le.rpm a9f5b71dddc9467c154857679663a06a5c8d61135a306cb5364c5ef5c74a7265
s390x flatpak-libs-1.12.8-1.el9.s390x.rpm 364c8e31e15ce968d6a503fc5a9f1af3d254ede4fd6946f1e2e8d4311ce6949f
s390x flatpak-1.12.8-1.el9.s390x.rpm 9e0a0f928f69e5ef126fcda472d27b1a905092871f0261925f81a071caad2c60
s390x flatpak-session-helper-1.12.8-1.el9.s390x.rpm a7190a909d839bda97fdf33a24c07a5f48860b0dce8348584edea74635305d58
s390x flatpak-devel-1.12.8-1.el9.s390x.rpm ff52968dceedd6794644ad2abb6a7a3ce5ecdd06927dc76f45abc28e095bc69c
x86_64 flatpak-1.12.8-1.el9.x86_64.rpm 0939deb625ad04aaf064a58025908b5e1d7a15e5a4b8a28f5c068b453b613d3d
x86_64 flatpak-libs-1.12.8-1.el9.x86_64.rpm 3fc04d9bd733a2b1e30ced289ff5fbda93329eab05c4fd73e14bb9ee0a21edc7
x86_64 flatpak-session-helper-1.12.8-1.el9.x86_64.rpm b2255bd88cef9450234fd4c7468c94a8f794ad0886a6fddd59be0a9530104248
x86_64 flatpak-devel-1.12.8-1.el9.x86_64.rpm db3927350d2c9306d4ddc2367e6afd0c181724811741ea2d39d8604380e1fff9
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.