Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted flatpak-builder 1.2.2-1 (source) into unstable
Date: Tue, 18 Jan 2022 19:20:28 +0000
Signed by: Simon McVittie <smcv@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 18 Jan 2022 18:06:42 +0000
Source: flatpak-builder
Architecture: source
Version: 1.2.2-1
Distribution: unstable
Urgency: high
Maintainer: Utopia Maintenance Team <pkg-utopia-maintainers@lists.alioth.debian.org>
Changed-By: Simon McVittie <smcv@debian.org>
Changes:
 flatpak-builder (1.2.2-1) unstable; urgency=high
 .
   * New upstream stable release
   * Security fixes:
     - Prevent a malicious build creating directories outside the build
       directory, when used in conjunction with flatpak (>= 1.12.2)
       (CVE-2022-21682, GHSA-8ch7-5j3h-g4fx)
   * Other bug fixes:
     - Improve JSON schema
   * d/control: Bump Flatpak dependency to 1.12.2
   * Set urgency to high for CVE-2022-21682
Checksums-Sha1:
 db40603d14d8a112e6a20a4f4668d9079d6b68cd 2948 flatpak-builder_1.2.2-1.dsc
 59c5dcd6363c3b6bdc0be773d41d1038a92a80d1 503444 flatpak-builder_1.2.2.orig.tar.xz
 7bfb000f99d005618cb895385e30ef089439ad72 7292 flatpak-builder_1.2.2-1.debian.tar.xz
 eae9e9208e67919e2eb0104ffc0f810f48bca97d 10717 flatpak-builder_1.2.2-1_source.buildinfo
Checksums-Sha256:
 4687f7934c8ae3808b6b6ba541b2da591e79a361247bbce1c4ee239628e61c76 2948 flatpak-builder_1.2.2-1.dsc
 89fda68e537c1e9de02352690bd89c3217a729164558d35f35b08f79ad84e03e 503444 flatpak-builder_1.2.2.orig.tar.xz
 1cdfe2aad7c9b644fc21389f4e0eb78bd9652888f720ef845d15f04c016acbce 7292 flatpak-builder_1.2.2-1.debian.tar.xz
 62a150684444249c42e5a9ddcd0bb100e5acbaef7f0eaafb41fc08d36b7b548b 10717 flatpak-builder_1.2.2-1_source.buildinfo
Files:
 1f7b0ea0594ff316eeaaead6423af1be 2948 devel optional flatpak-builder_1.2.2-1.dsc
 f50b5ee36da5369f96655f1c03d9a58d 503444 devel optional flatpak-builder_1.2.2.orig.tar.xz
 29247ce2b369c1b0088e687934b0d812 7292 devel optional flatpak-builder_1.2.2-1.debian.tar.xz
 6027751848f1e9018a75e14d07597812 10717 devel optional flatpak-builder_1.2.2-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=xWZm
-----END PGP SIGNATURE-----

News for package flatpak-builder