flatpak/xdg-desktop-portal

Releases74

Frequency1 month 2 weeks

Last Release 6 days ago

Stars809

Desktop integration portal

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2026-40354 ↗	Apr 11, 2026Saturday, 11 April 2026, 01:16	2.9 LOW	—
Flatpak xdg-desktop-portal before 1.20.4 and 1.21.x before 1.21.1 allows any Flatpak app to trash any file in the host context via a symlink attack on g_file_trash.