Bug 2456284 (CVE-2026-34079) - CVE-2026-34079 flatpak: Flatpak: Arbitrary file deletion on host via improper cache file path validation
Summary: CVE-2026-34079 flatpak: Flatpak: Arbitrary file deletion on host via improper...
Keywords:
Status: NEW
Alias: CVE-2026-34079
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On: 2456394 2456395
Blocks:
TreeView+ depends on / blocked
 
Reported: 2026-04-07 22:02 UTC by OSIDB Bzimport
Modified: 2026-07-06 03:36 UTC (History)
0 users

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2026:21755 0 None None None 2026-05-28 17:39:07 UTC
Red Hat Product Errata RHSA-2026:21756 0 None None None 2026-05-28 17:25:25 UTC
Red Hat Product Errata RHSA-2026:21757 0 None None None 2026-05-28 17:31:03 UTC
Red Hat Product Errata RHSA-2026:23417 0 None None None 2026-06-04 18:32:03 UTC
Red Hat Product Errata RHSA-2026:23418 0 None None None 2026-06-04 18:26:02 UTC
Red Hat Product Errata RHSA-2026:23419 0 None None None 2026-06-04 18:23:12 UTC
Red Hat Product Errata RHSA-2026:23420 0 None None None 2026-06-04 18:21:54 UTC
Red Hat Product Errata RHSA-2026:25068 0 None None None 2026-06-10 13:08:00 UTC
Red Hat Product Errata RHSA-2026:25381 0 None None None 2026-06-11 19:24:57 UTC
Red Hat Product Errata RHSA-2026:30901 0 None None None 2026-06-29 07:40:57 UTC
Red Hat Product Errata RHSA-2026:35843 0 None None None 2026-07-06 03:36:31 UTC

Description OSIDB Bzimport 2026-04-07 22:02:01 UTC
Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the caching for ld.so removes outdated cache files without properly checking that the app controlled path to the outdated cache is in the cache directory. This allows Flatpak apps  to delete arbitrary files on the host. This vulnerability is fixed in 1.16.4.

Comment 2 errata-xmlrpc 2026-05-28 17:25:24 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2026:21756 https://access.redhat.com/errata/RHSA-2026:21756

Comment 3 errata-xmlrpc 2026-05-28 17:31:02 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2026:21757 https://access.redhat.com/errata/RHSA-2026:21757

Comment 4 errata-xmlrpc 2026-05-28 17:39:06 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2026:21755 https://access.redhat.com/errata/RHSA-2026:21755

Comment 5 errata-xmlrpc 2026-06-04 18:21:53 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10.0 Extended Update Support

Via RHSA-2026:23420 https://access.redhat.com/errata/RHSA-2026:23420

Comment 6 errata-xmlrpc 2026-06-04 18:23:11 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions

Via RHSA-2026:23419 https://access.redhat.com/errata/RHSA-2026:23419

Comment 7 errata-xmlrpc 2026-06-04 18:26:01 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.6 Extended Update Support

Via RHSA-2026:23418 https://access.redhat.com/errata/RHSA-2026:23418

Comment 8 errata-xmlrpc 2026-06-04 18:32:03 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions

Via RHSA-2026:23417 https://access.redhat.com/errata/RHSA-2026:23417

Comment 9 errata-xmlrpc 2026-06-10 13:07:59 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.8 Telecommunications Update Service

Via RHSA-2026:25068 https://access.redhat.com/errata/RHSA-2026:25068

Comment 10 errata-xmlrpc 2026-06-11 19:24:56 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On

Via RHSA-2026:25381 https://access.redhat.com/errata/RHSA-2026:25381

Comment 11 errata-xmlrpc 2026-06-29 07:40:56 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On

Via RHSA-2026:30901 https://access.redhat.com/errata/RHSA-2026:30901

Comment 12 errata-xmlrpc 2026-07-06 03:36:30 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7 Extended Lifecycle Support

Via RHSA-2026:35843 https://access.redhat.com/errata/RHSA-2026:35843


Note You need to log in before you can comment on or make changes to this bug.