Lucene search
SuseOPENSUSE-SU-2019:2038-1HistoryAug 31, 2019 - 12:00 a.m.
Security update for flatpak (moderate)
2019-08-3100:00:00
lists.opensuse.org
275
0.002 Low
EPSS
Percentile
64.9%
An update that fixes three vulnerabilities is now available.
Description:
This update for flatpak fixes the following issues:
Security issues fixed:
- CVE-2019-8308: Fixed a potential sandbox escape via /proc (bsc#1125431).
- CVE-2019-11460: Fixed a compromised thumbnailer may escape the
bubblewrap sandbox used to confine thumbnailers by using the TIOCSTI
ioctl (bsc#1133043). - CVE-2019-11461: Fixed a compromised thumbnailer may escape the
bubblewrap sandbox used to confine thumbnailers by using the TIOCSTI
ioctl (bsc#1133041).
This update was imported from the SUSE:SLE-15:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 15.0:
zypper in -t patch openSUSE-2019-2038=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 15.0 | x86_64 | < - openSUSE Leap 15.0 (x86_64): | - openSUSE Leap 15.0 (x86_64):.x86_64.rpm |
Related
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2019:2185-1)
2021-06-09 00:00:00
openSUSE: Security Advisory for flatpak (openSUSE-SU-2019:2038-1)
2019-09-01 00:00:00
Ubuntu: Security Advisory (USN-3994-1)
2019-05-28 00:00:00
nessus
nessus
SUSE SLED15 / SLES15 Security Update : flatpak (SUSE-SU-2019:2185-1)
2019-08-21 00:00:00
openSUSE Security Update : flatpak (openSUSE-2019-2038)
2019-09-03 00:00:00
RHEL 8 : gnome-desktop (Unpatched Vulnerability)
2024-05-11 00:00:00
gentoo
gentoo
Nautilus: Security bypass
2019-08-31 00:00:00
GNOME desktop library: Security bypass
2019-08-31 00:00:00
ubuntu
ubuntu
gnome-desktop vulnerability
2019-05-27 00:00:00
nvd
nvd
ubuntucve
ubuntucve
amazon
amazon
Important: flatpak
2019-03-21 19:31:00
osv
osv
CVE-2019-8308
2019-02-12 23:29:00
flatpak - security update
2019-02-12 00:00:00
CVE-2019-11460
2019-04-22 22:29:00
oraclelinux
oraclelinux
flatpak security update
2019-02-19 00:00:00
cvelist
cvelist
fedora
fedora
[SECURITY] Fedora 29 Update: gnome-desktop3-3.30.2.3-1.fc29
2019-05-20 12:07:27
[SECURITY] Fedora 28 Update: flatpak-1.0.7-1.fc28
2019-02-28 19:38:32
suse
suse
Security update for gnome-desktop (moderate)
2022-11-01 00:00:00
debiancve
debiancve
redhatcve
redhatcve
veracode
veracode
Remote Code Execution (RCE)
2019-02-18 06:46:47
centos
centos
flatpak security update
2019-02-20 20:15:35
prion
prion
Design/Logic Flaw
2019-02-12 23:29:00
Design/Logic Flaw
2019-04-22 22:29:00
Design/Logic Flaw
2019-04-22 21:29:00
cve
cve
redhat
redhat
(RHSA-2019:0375) Important: flatpak security update
2019-02-19 15:59:19
alpinelinux
alpinelinux
CVE-2019-11461
2019-04-22 21:29:00
archlinux
archlinux
[ASA-201905-3] nautilus: sandbox escape
2019-05-06 00:00:00