[Git][security-tracker-team/security-tracker][master] update bookworm status for two CVEless flatpak issues
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Thu Apr 23 14:15:53 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
178b473c by Moritz Muehlenhoff at 2026-04-23T15:15:24+02:00
update bookworm status for two CVEless flatpak issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8647,10 +8647,12 @@ CVE-2026-39860 (Nix is a package manager for Linux and other Unix systems. A bug
CVE-2026-XXXX [GHSA-2fxp-43j9-pwvc: Arbitrary read-access to files readable by _flatpak user]
- flatpak 1.16.4-1 (bug #1132946)
[trixie] - flatpak 1.16.6-1~deb13u1
+ [bookworm] - flatpak 1.14.10-1~deb12u2
NOTE: https://github.com/flatpak/flatpak/security/advisories/GHSA-2fxp-43j9-pwvc
CVE-2026-XXXX [GHSA-89xm-3m96-w3jg: cross-user CancelPull orphans another user's ongoing pull]
- flatpak 1.16.4-1 (bug #1132945)
[trixie] - flatpak 1.16.6-1~deb13u1
+ [bookworm] - flatpak 1.14.10-1~deb12u2
NOTE: https://github.com/flatpak/flatpak/security/advisories/GHSA-89xm-3m96-w3jg
CVE-2026-34079 (Flatpak is a Linux application sandboxing and distribution framework. ...)
{DSA-6223-1 DSA-6207-1}
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/178b473c205c56139bb31683454d4a2518700236
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/178b473c205c56139bb31683454d4a2518700236
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260423/fa888c5f/attachment.htm>
More information about the debian-security-tracker-commits
mailing list