Amazon Linux 2 : flatpak (ALAS-2018-1096)
Medium Nessus Plugin ID 118403
SynopsisThe remote Amazon Linux 2 host is missing a security update.
DescriptionIt was found that flatpak's D-Bus proxy did not properly filter the access to D-Bus during the authentication protocol. A specially crafted flatpak application could use this flaw to bypass all restrictions imposed by flatpak and have full access to the D-BUS interface.(CVE-2018-6560)
SolutionRun 'yum update flatpak' to update your system.