Flatpak is vulnerable to CVE-2024-32462

Done

Details

2 participants

DonaldSanders1968
Z572

Owner: unassigned

Submitted by: DonaldSanders1968

Severity: normal

D

D

DonaldSanders1968 wrote on 23 Apr 18:59 +0200

Recipients:(name . bug-guix@gnu.org)(address . bug-guix@gnu.org)

Message-ID:qeqeIkakymM_j1XHuLpUj6fAfaQc7EKOJNoTMONvxn4WVB5WLh1w5-EenTUwU0Y9tboWfN4-rSAaWXHdfWD3xRPoPTdnVF6pxXT9sRJeBVM=@protonmail.ch

Hi Guix,

Flatpak before versions 1.10.9, 1.12.9, 1.14.6, and 1.15.8 is vulnerable to [CVE-2024-32462](https://nvd.nist.gov/vuln/detail/CVE-2024-32462).Currently what we have is in version 1.14.4.

Kind regards,

Donald

Attachment: file

Z

Z

Z572 wrote on 24 Apr 04:46 +0200

Recipients:(address . DonaldSanders1968@protonmail.ch)(address . 70539-done@debbugs.gnu.org)

Message-ID:87plufh407.fsf@iscas.ac.cn

Thanks, fix in https://git.savannah.gnu.org/cgit/guix.git/commit/?id=d115af1bcc48f07a40dafd94d1d00926d446d068

-----BEGIN PGP SIGNATURE-----
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=JlwM
-----END PGP SIGNATURE-----

Closed

?

Your comment

Commenting via the web interface is currently disabled.

To comment on this conversation send an email to 70539@debbugs.gnu.org