Signal

Flatpak: Complete sandbox escape leading to host file access and code execution in the host context

Evidence first: scan the strongest sources, then decide whether to go deeper.

Published 2026-04-08 02:00 UTCUpdated 2026-04-08 08:32 UTC

rss

securityhelp_net_security

Source links open

Source links and full evidence are open here. Archive history, compare-over-time, alerts, exports, API, integrations, and workflow are paid.

Back Evidence (2)Get the free brief by email Start free trial

No card needed for the free brief.

Evidence trail (top sources)

top sources (2 domains)

2 top sources shown

Flatpak 1.16.4 fixes sandbox escape and three other security flaws

Help Net Security · News · helpnetsecurity.com · 2026-04-08 08:32 UTC

Flatpak: Complete sandbox escape leading to host file access and code execution in the host context

NCSC-FI - Vulnerabilities · github.com · 2026-04-08 02:00 UTC

limited source diversity in top sources

View all evidence

Overview

Flatpak, a Linux application sandboxing and distribution framework, released version 1.16.4, patching four security vulnerabilities. The most severe fix addresses a complete sandbox escape that leads to host file access and code execution in the host context, tracked as CVE-2026-34078.

Score total

1.06

Momentum 24h

Posts

Origins

Source types

Duplicate ratio

All evidence

Flatpak 1.16.4 fixes sandbox escape and three other security flaws

Help Net Security · helpnetsecurity.com · 2026-04-08 08:32 UTC

Flatpak: Complete sandbox escape leading to host file access and code execution in the host context

NCSC-FI - Vulnerabilities · github.com · 2026-04-08 02:00 UTC

Show filters & breakdown

Posts loaded: 0Publishers: 2Origin domains: 2Duplicates: -

Platform

Publisher

Origin domain

Relevance tier

Duplicates only

Showing 2 / 0

Top publishers (this list)

Help Net Security (1)
NCSC-FI - Vulnerabilities (1)

Top origin domains (this list)

helpnetsecurity.com (1)
github.com (1)