Ubuntu Security Update USN-4721-1: Flatpak vulnerability

Thread starter LinuxBot
Start date Feb 4, 2021

LinuxBot

Member

Feb 4, 2021

#1

Simon McVittie discovered that flatpak-portal service allowed sandboxed applications to execute arbitrary code on the host system (a sandbox escape). A malicious user could create a Flatpak application that set environment variables, trusted by the Flatpak "run" command, and use it to execute arbitrary code outside the sandbox.

Continue reading...

You must log in or register to reply here.

Similar threads

Debian Security Update DSA-6223-1 flatpak - security update

Replies: 0

Views: 123

Apr 22, 2026

LinuxBot

Debian Security Update DSA-6207-1 flatpak - security update

Replies: 0

Views: 149

Apr 12, 2026

LinuxBot

Debian Security Update DSA-6319-1 yelp - security update

Replies: 0

Views: 47

Jun 2, 2026

LinuxBot

News [Linuxiac] Flatpak 1.16.4 Fixes Critical Sandbox Escape Vulnerability

Replies: 0

Views: 240

Apr 7, 2026

LinuxBot

Ubuntu Security Update USN-8301-1: SimpleEval vulnerability

Replies: 0

Views: 55

May 25, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Members online

Total: 2,199 (members: 4, guests: 2,195)

Latest posts

Cannot install any Linux
- Latest: APTI
- 17 minutes ago
Getting Started
Back to sing Linux praises
- Latest: KGIII
- 25 minutes ago
General Linux Topics
Is it worth making my own Linux distribution, or just going through the suffering of making my own?
- Latest: Aswd
- Today at 8:30 PM
Getting Started
C
Run this script in the current bash terminal shell window, but have it open shred in another bash terminal shell window?
- Latest: CoincidentalHell
- Today at 8:15 PM
General Linux Topics
Expirion is alive again
- Latest: GatorsFan
- Today at 7:05 PM
Debian and derivatives

Top