It was discovered that Flatpak incorrectly handled certain AF_UNIX sockets. An attacker could use this to specially craft a Flatpak application that could escape sandbox confinement.
{ "availability": "No subscription required", "binaries": [ { "gir1.2-flatpak-1.0": "1.0.9-0ubuntu0.4", "flatpak-tests": "1.0.9-0ubuntu0.4", "libflatpak0": "1.0.9-0ubuntu0.4", "libflatpak0-dbgsym": "1.0.9-0ubuntu0.4", "flatpak": "1.0.9-0ubuntu0.4", "flatpak-tests-dbgsym": "1.0.9-0ubuntu0.4", "libflatpak-doc": "1.0.9-0ubuntu0.4", "libflatpak-dev": "1.0.9-0ubuntu0.4", "flatpak-dbgsym": "1.0.9-0ubuntu0.4" } ] }
{ "availability": "No subscription required", "binaries": [ { "gir1.2-flatpak-1.0": "1.6.5-0ubuntu0.4", "flatpak-tests": "1.6.5-0ubuntu0.4", "libflatpak0": "1.6.5-0ubuntu0.4", "libflatpak0-dbgsym": "1.6.5-0ubuntu0.4", "flatpak": "1.6.5-0ubuntu0.4", "flatpak-tests-dbgsym": "1.6.5-0ubuntu0.4", "libflatpak-doc": "1.6.5-0ubuntu0.4", "libflatpak-dev": "1.6.5-0ubuntu0.4", "flatpak-dbgsym": "1.6.5-0ubuntu0.4" } ] }