ID de Prueba:	1.3.6.1.4.1.25623.1.0.883392
Categoría:	CentOS Local Security Checks
Título:	CentOS: Security Advisory for flatpak (CESA-2021:4044)
Resumen:	The remote host is missing an update for the 'flatpak'; package(s) announced via the CESA-2021:4044 advisory.
Descripción:	Summary: The remote host is missing an update for the 'flatpak' package(s) announced via the CESA-2021:4044 advisory. Vulnerability Insight: Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. Security Fix(es): * flatpak: Sandbox bypass via recent VFS-manipulating syscalls (CVE-2021-41133) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Affected Software/OS: 'flatpak' package(s) on CentOS 7. Solution: Please install the updated package(s). CVSS Score: 4.6 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2021-41133 https://github.com/flatpak/flatpak/security/advisories/GHSA-67h7-w3jq-vh4q Debian Security Information: DSA-4984 (Google Search) https://www.debian.org/security/2021/dsa-4984 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R5656ONDP2MGKIJMKEC7N2NXCV27WGTC/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T5DKCYRC6MFSTFCUP4DELCOUUP3SFEFX/ https://security.gentoo.org/glsa/202312-12 https://github.com/flatpak/flatpak/commit/1330662f33a55e88bfe18e76de28b7922d91a999 https://github.com/flatpak/flatpak/commit/26b12484eb8a6219b9e7aa287b298a894b2f34ca https://github.com/flatpak/flatpak/commit/462fca2c666e0cd2b60d6d2593a7216a83047aaf https://github.com/flatpak/flatpak/commit/4c34815784e9ffda5733225c7d95824f96375e36 https://github.com/flatpak/flatpak/commit/89ae9fe74c6d445bb1b3a40e568d77cf5de47e48 https://github.com/flatpak/flatpak/commit/9766ee05b1425db397d2cf23afd24c7f6146a69f https://github.com/flatpak/flatpak/commit/a10f52a7565c549612c92b8e736a6698a53db330 https://github.com/flatpak/flatpak/commit/e26ac7586c392b5eb35ff4609fe232c52523b2cf http://www.openwall.com/lists/oss-security/2021/10/26/9
Copyright	Copyright (C) 2021 Greenbone Networks GmbH

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.