CVE-2022-21682

CWE-22 — Path Traversal5 documents5 sources

Severity

6.5MEDIUM

EPSS

0.3%

top 43.66%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Flatpak Flatpak Flatpak Flatpak-builder Debian Debian Linux +2 more

Timeline

PublishedJan 13

Description

Flatpak is a Linux application sandboxing and distribution framework. A path traversal vulnerability affects versions of Flatpak prior to 1.12.3 and 1.10.6. flatpak-builder applies `finish-args` last in the build. At this point the build directory will have the full access that is specified in the manifest, so running `flatpak build` against it will gain those permissions. Normally this will not be done, so this is not problem. However, if `--mirror-screenshots-url` is specified, then flatpak-bu…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:NExploitability: 3.1 | Impact: 4.0

Affected Packages4 packages

▶NVDflatpak/flatpak-builder< 1.2.2

▶CVEListV5flatpak/flatpak< 1.10.6+1

▶NVDflatpak/flatpak1.11.1 — 1.12.4+1

▶Debianflatpak< 1.10.7-0+deb11u1+3

Also affects: Debian Linux 10.0, 11.0, 9.0, Enterprise Linux 8.0, Fedora 35

Patches

Patch: github.com ↗Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

CVE-2022-21682: Flatpak is a Linux application sandboxing and distribution framework↗2022-01-13

▶

CVEList

flatpak-builder can access files outside the build directory.↗2022-01-13

▶

📋Vendor Advisories

Red Hat

flatpak: flatpak-builder --mirror-screenshots-url can access files outside the build directory↗2022-01-12

▶

Debian

CVE-2022-21682: flatpak - Flatpak is a Linux application sandboxing and distribution framework. A path tra...↗2022

▶