*** This bug is a duplicate of bug 2062406 ***
https://bugs.launchpad.net/bugs/2062406
This is the same vulnerability as LP: #2062406.
** This bug has been marked a duplicate of bug 2062406
CVE-2024-32462: Sandbox escape via RequestBackground portal and CWE-88
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to flatpak in Ubuntu.
https://bugs.launchpad.net/bugs/2062956
Title:
CVE-2024-32462 - Need to update to the last secure patch
Status in flatpak package in Ubuntu:
Confirmed
Bug description:
Hello,
There is a security issue in flatpack package, see:
https://www.cve.org/CVERecord?id=CVE-2024-32462
To fix that, according to Ubuntu version we have to update the package to one
of these versions: 1.10.9, 1.12.9, 1.14.6, and 1.15.8,
Here is the current statut:
Noble = OK
Mantic = update required
Jammy = update required
Focal = update required
Could you please check that and provide the patched version?
Thanks in advance.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/flatpak/+bug/2062956/+subscriptions
--
Mailing list: https://launchpad.net/~desktop-packages
Post to : desktop-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~desktop-packages
More help : https://help.launchpad.net/ListHelp
