{ "document":{ "aggregate_severity":{ "namespace":"https://nvd.nist.gov/vuln-metrics/cvss", "text":"Medium" }, "category":"csaf_vex", "csaf_version":"2.0", "distribution":{ "tlp":{ "label":"WHITE", "url":"https:/www.first.org/tlp/" } }, "lang":"en", "notes":[ { "text":"flatpak security update", "category":"general", "title":"Synopsis" }, { "text":"An update for flatpak is now available for openEuler-22.03-LTS.", "category":"general", "title":"Summary" }, { "text":"flatpak is a system for building, distributing and running sandboxed desktop applications on Linux. See https://wiki.gnome.org/Projects/SandboxedApps for more information.\n\nSecurity Fix(es):\n\nFlatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. Versions prior to 1.10.8, 1.12.8, 1.14.4, and 1.15.4 contain a vulnerability similar to CVE-2017-5226, but using the `TIOCLINUX` ioctl command instead of `TIOCSTI`. If a Flatpak app is run on a Linux virtual console such as `/dev/tty1`, it can copy text from the virtual console and paste it into the command buffer, from which the command might be run after the Flatpak app has exited. Ordinary graphical terminal emulators like xterm, gnome-terminal and Konsole are unaffected. This vulnerability is specific to the Linux virtual consoles `/dev/tty1`, `/dev/tty2` and so on. A patch is available in versions 1.10.8, 1.12.8, 1.14.4, and 1.15.4. As a workaround, don't run Flatpak on a Linux virtual console. Flatpak is primarily designed to be used in a Wayland or X11 graphical environment.(CVE-2023-28100)\n\nFlatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. In versions prior to 1.10.8, 1.12.8, 1.14.4, and 1.15.4, if an attacker publishes a Flatpak app with elevated permissions, they can hide those permissions from users of the `flatpak(1)` command-line interface by setting other permissions to crafted values that contain non-printable control characters such as `ESC`. A fix is available in versions 1.10.8, 1.12.8, 1.14.4, and 1.15.4. As a workaround, use a GUI like GNOME Software rather than the command-line interface, or only install apps whose maintainers you trust.(CVE-2023-28101)", "category":"general", "title":"Description" }, { "text":"An update for flatpak is now available for openEuler-22.03-LTS.\n\nopenEuler Security has rated this update as having a security impact of medium. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.", "category":"general", "title":"Topic" }, { "text":"Medium", "category":"general", "title":"Severity" }, { "text":"flatpak", "category":"general", "title":"Affected Component" } ], "publisher":{ "issuing_authority":"openEuler security committee", "name":"openEuler", "namespace":"https://www.openeuler.org", "contact_details":"openeuler-security@openeuler.org", "category":"vendor" }, "references":[ { "summary":"openEuler-SA-2024-1424", "category":"self", "url":"https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-1424" }, { "summary":"CVE-2023-28100", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail?cveId=CVE-2023-28100&packageName=flatpak" }, { "summary":"CVE-2023-28101", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail?cveId=CVE-2023-28101&packageName=flatpak" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2023-28100" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2023-28101" }, { "summary":"openEuler-SA-2024-1424 vex file", "category":"self", "url":"https://repo.openeuler.org/security/data/csaf/advisories/2024/csaf-openeuler-sa-2024-1424.json" } ], "title":"An update for flatpak is now available for openEuler-22.03-LTS", "tracking":{ "initial_release_date":"2024-04-12T09:15:17+08:00", "revision_history":[ { "date":"2024-04-12T09:15:17+08:00", "summary":"Initial", "number":"1.0.0" }, { "date":"2024-10-31T09:15:17+08:00", "summary":"final", "number":"2.0.0" } ], "generator":{ "date":"2024-10-31T09:15:17+08:00", "engine":{ "name":"openEuler CSAF Tool V1.0" } }, "current_release_date":"2024-10-31T09:15:17+08:00", "id":"openEuler-SA-2024-1424", "version":"2.0.0", "status":"final" } }, "product_tree":{ "branches":[ { "name":"openEuler", "category":"vendor", "branches":[ { "name":"openEuler", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS" }, "product_id":"openEuler-22.03-LTS", "name":"openEuler-22.03-LTS" }, "name":"openEuler-22.03-LTS", "category":"product_version" } ], "category":"product_name" }, { "name":"aarch64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS" }, "product_id":"flatpak-debuginfo-1.10.2-7.oe2203.aarch64.rpm", "name":"flatpak-debuginfo-1.10.2-7.oe2203.aarch64.rpm" }, "name":"flatpak-debuginfo-1.10.2-7.oe2203.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS" }, "product_id":"flatpak-devel-1.10.2-7.oe2203.aarch64.rpm", "name":"flatpak-devel-1.10.2-7.oe2203.aarch64.rpm" }, "name":"flatpak-devel-1.10.2-7.oe2203.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS" }, "product_id":"flatpak-1.10.2-7.oe2203.aarch64.rpm", "name":"flatpak-1.10.2-7.oe2203.aarch64.rpm" }, "name":"flatpak-1.10.2-7.oe2203.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS" }, "product_id":"flatpak-debugsource-1.10.2-7.oe2203.aarch64.rpm", "name":"flatpak-debugsource-1.10.2-7.oe2203.aarch64.rpm" }, "name":"flatpak-debugsource-1.10.2-7.oe2203.aarch64.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"noarch", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS" }, "product_id":"flatpak-help-1.10.2-7.oe2203.noarch.rpm", "name":"flatpak-help-1.10.2-7.oe2203.noarch.rpm" }, "name":"flatpak-help-1.10.2-7.oe2203.noarch.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"src", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS" }, "product_id":"flatpak-1.10.2-7.oe2203.src.rpm", "name":"flatpak-1.10.2-7.oe2203.src.rpm" }, "name":"flatpak-1.10.2-7.oe2203.src.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"x86_64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS" }, "product_id":"flatpak-1.10.2-7.oe2203.x86_64.rpm", "name":"flatpak-1.10.2-7.oe2203.x86_64.rpm" }, "name":"flatpak-1.10.2-7.oe2203.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS" }, "product_id":"flatpak-debuginfo-1.10.2-7.oe2203.x86_64.rpm", "name":"flatpak-debuginfo-1.10.2-7.oe2203.x86_64.rpm" }, "name":"flatpak-debuginfo-1.10.2-7.oe2203.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS" }, "product_id":"flatpak-debugsource-1.10.2-7.oe2203.x86_64.rpm", "name":"flatpak-debugsource-1.10.2-7.oe2203.x86_64.rpm" }, "name":"flatpak-debugsource-1.10.2-7.oe2203.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS" }, "product_id":"flatpak-devel-1.10.2-7.oe2203.x86_64.rpm", "name":"flatpak-devel-1.10.2-7.oe2203.x86_64.rpm" }, "name":"flatpak-devel-1.10.2-7.oe2203.x86_64.rpm", "category":"product_version" } ], "category":"architecture" } ] } ], "relationships":[ { "relates_to_product_reference":"openEuler-22.03-LTS", "product_reference":"flatpak-debuginfo-1.10.2-7.oe2203.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS:flatpak-debuginfo-1.10.2-7.oe2203.aarch64", "name":"flatpak-debuginfo-1.10.2-7.oe2203.aarch64 as a component of openEuler-22.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS", "product_reference":"flatpak-devel-1.10.2-7.oe2203.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS:flatpak-devel-1.10.2-7.oe2203.aarch64", "name":"flatpak-devel-1.10.2-7.oe2203.aarch64 as a component of openEuler-22.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS", "product_reference":"flatpak-1.10.2-7.oe2203.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.aarch64", "name":"flatpak-1.10.2-7.oe2203.aarch64 as a component of openEuler-22.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS", "product_reference":"flatpak-debugsource-1.10.2-7.oe2203.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS:flatpak-debugsource-1.10.2-7.oe2203.aarch64", "name":"flatpak-debugsource-1.10.2-7.oe2203.aarch64 as a component of openEuler-22.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS", "product_reference":"flatpak-help-1.10.2-7.oe2203.noarch.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS:flatpak-help-1.10.2-7.oe2203.noarch", "name":"flatpak-help-1.10.2-7.oe2203.noarch as a component of openEuler-22.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS", "product_reference":"flatpak-1.10.2-7.oe2203.src.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.src", "name":"flatpak-1.10.2-7.oe2203.src as a component of openEuler-22.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS", "product_reference":"flatpak-1.10.2-7.oe2203.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.x86_64", "name":"flatpak-1.10.2-7.oe2203.x86_64 as a component of openEuler-22.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS", "product_reference":"flatpak-debuginfo-1.10.2-7.oe2203.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS:flatpak-debuginfo-1.10.2-7.oe2203.x86_64", "name":"flatpak-debuginfo-1.10.2-7.oe2203.x86_64 as a component of openEuler-22.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS", "product_reference":"flatpak-debugsource-1.10.2-7.oe2203.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS:flatpak-debugsource-1.10.2-7.oe2203.x86_64", "name":"flatpak-debugsource-1.10.2-7.oe2203.x86_64 as a component of openEuler-22.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS", "product_reference":"flatpak-devel-1.10.2-7.oe2203.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS:flatpak-devel-1.10.2-7.oe2203.x86_64", "name":"flatpak-devel-1.10.2-7.oe2203.x86_64 as a component of openEuler-22.03-LTS" }, "category":"default_component_of" } ] }, "vulnerabilities":[ { "cve":"CVE-2023-28100", "notes":[ { "text":"Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. Versions prior to 1.10.8, 1.12.8, 1.14.4, and 1.15.4 contain a vulnerability similar to CVE-2017-5226, but using the `TIOCLINUX` ioctl command instead of `TIOCSTI`. If a Flatpak app is run on a Linux virtual console such as `/dev/tty1`, it can copy text from the virtual console and paste it into the command buffer, from which the command might be run after the Flatpak app has exited. Ordinary graphical terminal emulators like xterm, gnome-terminal and Konsole are unaffected. This vulnerability is specific to the Linux virtual consoles `/dev/tty1`, `/dev/tty2` and so on. A patch is available in versions 1.10.8, 1.12.8, 1.14.4, and 1.15.4. As a workaround, don't run Flatpak on a Linux virtual console. Flatpak is primarily designed to be used in a Wayland or X11 graphical environment.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS:flatpak-debuginfo-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-devel-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-debugsource-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-help-1.10.2-7.oe2203.noarch", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.src", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-debuginfo-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-debugsource-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-devel-1.10.2-7.oe2203.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS:flatpak-debuginfo-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-devel-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-debugsource-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-help-1.10.2-7.oe2203.noarch", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.src", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-debuginfo-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-debugsource-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-devel-1.10.2-7.oe2203.x86_64" ], "details":"flatpak security update", "category":"vendor_fix", "url":"https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-1424" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":6.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS:flatpak-debuginfo-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-devel-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-debugsource-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-help-1.10.2-7.oe2203.noarch", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.src", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-debuginfo-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-debugsource-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-devel-1.10.2-7.oe2203.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2023-28100" }, { "cve":"CVE-2023-28101", "notes":[ { "text":"Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. In versions prior to 1.10.8, 1.12.8, 1.14.4, and 1.15.4, if an attacker publishes a Flatpak app with elevated permissions, they can hide those permissions from users of the `flatpak(1)` command-line interface by setting other permissions to crafted values that contain non-printable control characters such as `ESC`. A fix is available in versions 1.10.8, 1.12.8, 1.14.4, and 1.15.4. As a workaround, use a GUI like GNOME Software rather than the command-line interface, or only install apps whose maintainers you trust.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS:flatpak-debuginfo-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-devel-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-debugsource-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-help-1.10.2-7.oe2203.noarch", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.src", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-debuginfo-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-debugsource-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-devel-1.10.2-7.oe2203.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS:flatpak-debuginfo-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-devel-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-debugsource-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-help-1.10.2-7.oe2203.noarch", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.src", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-debuginfo-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-debugsource-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-devel-1.10.2-7.oe2203.x86_64" ], "details":"flatpak security update", "category":"vendor_fix", "url":"https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-1424" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":4.3, "vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "version":"3.1" }, "products":[ "openEuler-22.03-LTS:flatpak-debuginfo-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-devel-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-debugsource-1.10.2-7.oe2203.aarch64", "openEuler-22.03-LTS:flatpak-help-1.10.2-7.oe2203.noarch", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.src", "openEuler-22.03-LTS:flatpak-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-debuginfo-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-debugsource-1.10.2-7.oe2203.x86_64", "openEuler-22.03-LTS:flatpak-devel-1.10.2-7.oe2203.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2023-28101" } ] }