Flatpak up to 1.10.3/1.11.x seccomp Filter /.flatpak-info input validation

A vulnerability was found in Flatpak up to 1.10.3/1.11.x and classified as critical. This issue affects some unknown functionality of the file /.flatpak-info of the component seccomp Filter Handler. Upgrading to version 1.8.2, 1.10.4 or 1.12.0 eliminates this vulnerability. Applying the patch 1330662f33a55e88bfe18e76de28b7922d91a999 is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version.

Common Vulnerabilityies and Exposures

Contact us to get started

CVE-2024-55633 : APACHE SUPERSET UP TO 4.0.X POSTGRES ANALYTIC DATABASE IMPROPER AUTHORIZATION

CVE-2024-55633 : APACHE SUPERSET UP TO 4.0.X POSTGRES ANALYTIC DATABASE IMPROPER AUTHORIZATION

Description Improper Authorization vulnerability in Apache Superset. On Postgres analytic databases an attacker with SQLLab access can craft a specially

CVE-2024-8233 : GITLAB COMMUNITY EDITION/ENTERPRISE EDITION UP TO 17.4.5/17.5.3/17.6.1 MERGE REQUEST ALGORITHMIC COMPLEXITY

CVE-2024-8233 : GITLAB COMMUNITY EDITION/ENTERPRISE EDITION UP TO 17.4.5/17.5.3/17.6.1 MERGE REQUEST ALGORITHMIC COMPLEXITY

Description An issue has been discovered in GitLab CE/EE affecting all versions from 9.4 before 17.4.6, 17.5 before 17.5.4, and

CVE-2024-54098 : HUAWEI HARMONYOS/EMUI SYSTEM SERVICE MODULE LOGIC ERROR

CVE-2024-54098 : HUAWEI HARMONYOS/EMUI SYSTEM SERVICE MODULE LOGIC ERROR

Description Service logic error vulnerability in the system service module Impact: Successful exploitation of this vulnerability may affect service integrity.