First published: Tue Nov 12 2024(Updated: )
Bubblewrap (/usr/bin/bwrap) is a core execution engine for unprivileged containers that works as a setuid binary on kernels without user namespaces.<br>Security Fix(es):<br><li> flatpak: Access to files outside sandbox for apps using persistent= (--persist) (CVE-2024-42472)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected Software | Affected Version | How to fix |
---|---|---|
Red Hat Red Hat Enterprise Linux for x86_64 | ||
Red Hat Red Hat Enterprise Linux for Power, little endian | ||
Red Hat Red Hat CodeReady Linux Builder for x86_64 | ||
Red Hat Red Hat Enterprise Linux for IBM z Systems | ||
Red Hat Red Hat Enterprise Linux for ARM 64 | ||
Red Hat Red Hat CodeReady Linux Builder for Power, little endian | ||
Red Hat Red Hat CodeReady Linux Builder for ARM 64 | ||
Red Hat Red Hat CodeReady Linux Builder for IBM z Systems | ||
redhat/bubblewrap | <0.4.1-8.el9_5 | 0.4.1-8.el9_5 |
redhat/flatpak | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/bubblewrap | <0.4.1-8.el9_5 | 0.4.1-8.el9_5 |
redhat/bubblewrap-debuginfo | <0.4.1-8.el9_5 | 0.4.1-8.el9_5 |
redhat/bubblewrap-debugsource | <0.4.1-8.el9_5 | 0.4.1-8.el9_5 |
redhat/flatpak | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-debuginfo | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-debuginfo | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-debugsource | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-debugsource | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-libs | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-libs | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-libs-debuginfo | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-libs-debuginfo | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-selinux | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-session-helper | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-session-helper-debuginfo | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-session-helper-debuginfo | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-tests-debuginfo | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-tests-debuginfo | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/bubblewrap-debuginfo | <0.4.1-8.el9_5 | 0.4.1-8.el9_5 |
redhat/bubblewrap-debugsource | <0.4.1-8.el9_5 | 0.4.1-8.el9_5 |
redhat/flatpak-session-helper | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/bubblewrap | <0.4.1-8.el9_5 | 0.4.1-8.el9_5 |
redhat/bubblewrap-debuginfo | <0.4.1-8.el9_5 | 0.4.1-8.el9_5 |
redhat/bubblewrap-debugsource | <0.4.1-8.el9_5 | 0.4.1-8.el9_5 |
redhat/flatpak | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-debuginfo | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-debugsource | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-libs | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-libs-debuginfo | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-session-helper | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-session-helper-debuginfo | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-tests-debuginfo | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/bubblewrap | <0.4.1-8.el9_5.aa | 0.4.1-8.el9_5.aa |
redhat/bubblewrap-debuginfo | <0.4.1-8.el9_5.aa | 0.4.1-8.el9_5.aa |
redhat/bubblewrap-debugsource | <0.4.1-8.el9_5.aa | 0.4.1-8.el9_5.aa |
redhat/flatpak | <1.12.9-3.el9_5.aa | 1.12.9-3.el9_5.aa |
redhat/flatpak-debuginfo | <1.12.9-3.el9_5.aa | 1.12.9-3.el9_5.aa |
redhat/flatpak-debugsource | <1.12.9-3.el9_5.aa | 1.12.9-3.el9_5.aa |
redhat/flatpak-libs | <1.12.9-3.el9_5.aa | 1.12.9-3.el9_5.aa |
redhat/flatpak-libs-debuginfo | <1.12.9-3.el9_5.aa | 1.12.9-3.el9_5.aa |
redhat/flatpak-session-helper | <1.12.9-3.el9_5.aa | 1.12.9-3.el9_5.aa |
redhat/flatpak-session-helper-debuginfo | <1.12.9-3.el9_5.aa | 1.12.9-3.el9_5.aa |
redhat/flatpak-tests-debuginfo | <1.12.9-3.el9_5.aa | 1.12.9-3.el9_5.aa |
redhat/flatpak-devel | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-devel | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-devel | <1.12.9-3.el9_5 | 1.12.9-3.el9_5 |
redhat/flatpak-devel | <1.12.9-3.el9_5.aa | 1.12.9-3.el9_5.aa |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.