Overview

File _patchinfo of Package patchinfo.25785

<patchinfo incident="25785">
  <issue tracker="cve" id="2021-43860"/>
  <issue tracker="cve" id="2021-21261"/>
  <issue tracker="cve" id="2021-41133"/>
  <issue tracker="bnc" id="1194610">VUL-0: CVE-2021-43860: flatpak: Permissions granted to applications can be hidden from the user at install time</issue>
  <issue tracker="bnc" id="1191507">VUL-0: CVE-2021-41133: flatpak: Sandbox bypass via recent VFS-manipulating syscalls</issue>
  <packager>mgorse</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for flatpak</summary>
  <description>This update for flatpak fixes the following issues:

- CVE-2021-41133: Fixed sandbox bypass via recent syscalls (bsc#1191507).
- CVE-2021-43860: Fixed metadata validation (bsc#1194610).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places