CVE-2019-10063

EPSS 0.1%
Published 26.03.2019 14:29:00
Last modified 21.11.2024 04:18:19
Source cve@mitre.org
Teams watchlist Login
Open Login

Flatpak before 1.0.8, 1.1.x and 1.2.x before 1.2.4, and 1.3.x before 1.3.1 allows a sandbox bypass. Flatpak versions since 0.8.1 address CVE-2017-5226 by using a seccomp filter to prevent sandboxed apps from using the TIOCSTI ioctl, which could otherwise be used to inject commands into the controlling terminal so that they would be executed outside the sandbox after the sandboxed app exits. This fix was incomplete: on 64-bit platforms, the seccomp filter could be bypassed by an ioctl request number that has TIOCSTI in its 32 least significant bits and an arbitrary nonzero value in its 32 most significant bits, which the Linux kernel would treat as equivalent to TIOCSTI.

Affected products Warnungen 0 Metrics 3 CWE 1 References 6

Data is provided by the National Vulnerability Database (NVD)

Flatpak ≫ Flatpak Version < 1.0.8

Flatpak ≫ Flatpak Version >= 1.1.0 <= 1.1.3

Flatpak ≫ Flatpak Version >= 1.2.0 < 1.2.4

Flatpak ≫ Flatpak Version1.3.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.1%	0.252

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9	2.2	6	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
nvd@nist.gov	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://access.redhat.com/errata/RHSA-2019:1024

https://access.redhat.com/errata/RHSA-2019:1143

https://github.com/flatpak/flatpak/issues/2782

Patch

Third Party Advisory

Issue Tracking

https://nvd.nist.gov/vuln/detail/CVE-2019-10063

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2019-10063

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2019-10063

EUVD