Find similar content

📰 Flatpak 1.16.4 Fixes Critical Sandbox Escape Vulnerability Flatpak 1.16.4 addresses a critical sandbox escape vulnerability that could allow host file access and code execution, along with three additional security issues. 🔗 Source: https://linuxiac.com/flatpak-1-16-4-fixes-critical-sandbox-escape-vulnerability/ #flatpak

📰 PipeWire 1.6 Released With Many New Features PipeWire 1.6 is out today as the newest feature release for this software widely used by the Linux desktop for managing of audio and video streams while nicely integrating with sandboxed Flatpak apps and more... 🔗 Source: https://www.phoronix.com/news/PipeWire-1.6 #linux#flatpak

📰 Flatpak 1.17.7 To Track The Age Of Configurations For Providing Much Better Performance Flatpak 1.17.7 is now available for continuing to advance open-source app sandboxing and distribution on the Linux desktop. Some interesting new features are in tow with this Flatpak update plus there is also an updated XDG-Desktop-Portal release too... 🔗 Source: https://www.phoronix.com/news/Flatpak-1.17.7-Released #flatpak#linux#opensource

Flatseal Graphical utility for #Linux to review and modify permissions from your #Flatpak applications. Simply launch Flatseal, select an application and modify its permissions. Restart the application after making the changes. If anything goes wrong just press the reset button. Get it https://flathub.org/apps/details/com.github.tchx84.Flatseal For more details please visit the documentation page https://github.com/tchx84/Flatseal/blob/master/DOCUMENTATION.md https://github.com/tchx84/flatseal

📰 GNOME's Help Viewer Updated Due To Flatpak Sandbox Escape Vulnerability GNOME's help viewer, Yelp, last year was impacted by a serious security issue for arbitrary file reads. There's a new vulnerability affecting the GNOME help viewer that led to the Yelp 49.1 release to address a possible Flatpak sandbox escape vector... 🔗 Source: https://www.phoronix.com/news/GNOME-Help-Viewer-2026-Sandbox #flatpak#gnome

📰 Age checks creep into Linux as systemd gets a DOB field Flatpak may be next, and the lobbying behind it is raising eyebrows After weeks of debate, code to record user age was finally merged into the Linux world's favorite system management daemon.… 🔗 Source: https://go.theregister.com/feed/www.theregister.com/2026/03/24/foss_age_verification/ #flatpak#systemd#linux

📰Not a Firefox Fork! Kagi's Orion Browser Arrives on Linux as a Public Beta The Flatpak-only build brings basic browsing but extensions and Kagi Sync aren't ready yet. 🔗 Source: https://feed.itsfoss.com/link/24361/17300329/orion-browser-linux-beta-release #flatpak#firefox#linux

Flatpak 发现了一个安全漏洞 (CVE-2024-42472)，该漏洞允许使用持久目录的应用程序访问主机文件。受影响的版本包括所有低于 1.14.10 的版本和 1.15.x 低于 1.15.10 的版本。修复版本为 1.14.x 大于等于 1.14.10 和所有大于等于 1.15.10 的版本。 该漏洞允许恶意或被破坏的 Flatpak 应用读写通常无法访问的文件位置，影响完整性和保密性。漏洞的原因是当使用持久目录时，如果源目录被替换为符号链接，应用程序启动时绑定挂载会跟随符号链接，将指向的任何内容挂载到沙箱中。 修复包括在 Flatpak 1.14.10 和 1.15.10 中，并需要添加新的 --bind-fd 选项到 bubblewrap（Flatpak 使用的沙箱组件）以避免时间检查/时间使用竞争条件。如果难以修补 bubblewrap，可以仅应用补丁“不跟随符号链接挂载持久目录”，并避免同时运行同一不受信任应用的两个实例。 详情请参阅：https://github.com/flatpak/flatpak/security/advisories/GHSA-7hgv-f2j8-xw87 标签：#Linux#Security#Flatpak #AIGC

📰 Malware found in Linux builds of Cemu Wii U emulator If you’ve downloaded the Cemu Wii U emulator for Linux from the project’s official GitHub in the past few weeks, bad news: it may have added malware to your system when you ran it. The team who develop the the open-source emulator recently discovered that both the Linux AppImage and ZIP package of Cemu 2.6 on Github were “compromised” packages containing malware. The Cemu Flatpak and installers for Windows and macOS are not affected. 🔗 Source: https://www.omgubuntu.co.uk/2026/05/cemu-linux-malware #appimage#flatpak#linux#opensource

📰 Downloaded Cemu for Linux recently? You may have malware If you recently downloaded the Cemu emulator for Linux from the project’s GitHub, be aware: it may have added malware to your system. The team behind the Wii U emulator discovered that both the official AppImage and its Ubuntu ZIP assets for the Cemu 2.6 release available to download from GitHub were “compromised”. Cemu’s Flatpak was not affected, nor were the GitHub installers for Windows and macOS. To wit: if you downloaded Cemu 2. 🔗 Source: https://www.omgubuntu.co.uk/2026/05/cemu-linux-malware #appimage#flatpak#linux#ubuntu

📰 Shelly 2.1 Package Manager for Arch Linux Revamps AppImage Support Shelly 2.1 package manager for Arch Linux is now available for download with better support for AppImage, Flatpak, and AUR packages, as well as many other enhancements. 🔗 Source: https://9to5linux.com/shelly-2-1-package-manager-for-arch-linux-revamps-appimage-support #appimage#arch#flatpak#linux

4 security fixes in Flatpak, including critical CVE-2026-34078: Complete sandbox escape leading to host file access and code execution in the host context Flatpak 发布安全更新，修复 4 个漏洞，其中包括一个严重漏洞 CVE-2026-34078，该漏洞可导致沙箱完全逃逸，进而访问宿主机文件并在宿主机上下文中执行代码。 Flatpak 1.16.4 和 1.17.4 版本包含了这些安全修复。随后发布的 1.16.5 和 1.17.5 版本修复了由上述严重安全补丁引入的回归问题。 建议所有 Flatpak 用户尽快更新至最新版本以确保安全。 原文链接：https://seclists.org/oss-sec/2026/q2/56 #安全#漏洞#Linux#Flatpak#沙箱逃逸 #AIGC Read more