CVE-2023-28101: Metadata with ANSI control codes can cause misleading terminal output
Bug #2063034 reported by
Simon McVittie
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
flatpak (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
https:/
This was fixed in 1.15.4, 1.10.x >= 1.10.8, 1.12.x >= 1.12.8, 1.14.x >= 1.14.4.
At the time of writing, noble and mantic are OK, but jammy is vulnerable, and focal and bionic are probably vulnerable too.
CVE References
information type: | Private Security → Public Security |
To post a comment you must log in.