github flatpak/flatpak 1.14.4

latest releases: 1.14.10, 1.15.10, 1.15.9...
20 months ago

Security fixes:

  • Escape special characters when displaying permissions and metadata, preventing malicious apps from manipulating the appearance of the permissions list using crafted metadata (CVE-2023-28101).

  • If a Flatpak app is run on a Linux virtual console (tty1, tty2, etc.), don't allow copy/paste via the TIOCLINUX ioctl (CVE-2023-28100). Note that this is specific to virtual consoles: Flatpak is not vulnerable to this if run from a graphical terminal emulator such as xterm, gnome-terminal or Konsole.

Other bug fixes:

  • Translation update: pl

sha256:

8a34dbd0b67c434e7598b98ec690953d046f0db26e480aeafb46d72aec716799 *flatpak-1.14.4.tar.xz

Don't miss a new flatpak release

NewReleases is sending notifications on new releases.