Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-backports-changes@lists.debian.org>
Subject: Accepted flatpak 1.14.4-1+deb12u1~bpo11+1 (source) into bullseye-backports
Date: Wed, 24 Apr 2024 08:32:57 +0000
Signed by: Simon McVittie <smcv@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sat, 20 Apr 2024 17:10:59 +0100
Source: flatpak
Architecture: source
Version: 1.14.4-1+deb12u1~bpo11+1
Distribution: bullseye-backports
Urgency: high
Maintainer: Utopia Maintenance Team <pkg-utopia-maintainers@lists.alioth.debian.org>
Changed-By: Simon McVittie <smcv@debian.org>
Changes:
 flatpak (1.14.4-1+deb12u1~bpo11+1) bullseye-backports; urgency=high
 .
   * Rebuild bookworm security update for bullseye-backports
   * Remaining changes, relative to bookworm-security:
     - d/control: Relax libseccomp build-dependency to 2.5.0
     - d/control, d/gbp.conf: Adjust git branch for bullseye-backports
 .
 flatpak (1.14.4-1+deb12u1) bookworm-security; urgency=high
 .
   * d/p/When-starting-non-static-command-using-bwrap-use.patch,
     d/p/test-run-Add-a-reproducer-for-CVE-2024-32462.patch:
     Don't allow an executable name to be misinterpreted as a command-line
     option for bwrap(1). This prevents a sandbox escape where a malicious
     or compromised app could ask xdg-desktop-portal to generate a .desktop
     file with access to files outside the sandbox. (CVE-2024-32462)
   * d/gbp.conf: Use debian/bookworm packaging branch
Checksums-Sha1:
 037b32b5c1bb6d57e8a1fd773644ee0684f068bb 3756 flatpak_1.14.4-1+deb12u1~bpo11+1.dsc
 8a2ea547d8a14f7a0d177844bd0c486a91862494 36484 flatpak_1.14.4-1+deb12u1~bpo11+1.debian.tar.xz
 930d2d50fccbb89d14dbec99d473594e28449e9e 12480 flatpak_1.14.4-1+deb12u1~bpo11+1_source.buildinfo
Checksums-Sha256:
 61f8bb13497dc163605795a3f0d816452b857bc372c0b78372a49f5ab7081a67 3756 flatpak_1.14.4-1+deb12u1~bpo11+1.dsc
 c4b746f79a6cee67c08a4aa4bd1320a55a81bd3eff1b6743ef08d8f2f83f8aed 36484 flatpak_1.14.4-1+deb12u1~bpo11+1.debian.tar.xz
 8775008a01807faa2c92a109b536c100b301bf1c826a1168fafa368e51feb4e5 12480 flatpak_1.14.4-1+deb12u1~bpo11+1_source.buildinfo
Files:
 7781563bc21051378b1e198dfe335589 3756 admin optional flatpak_1.14.4-1+deb12u1~bpo11+1.dsc
 8b1c337a7263b46c236f53e9ec44080e 36484 admin optional flatpak_1.14.4-1+deb12u1~bpo11+1.debian.tar.xz
 d28ff9a26a00c9372d8c8afef87f2d7a 12480 admin optional flatpak_1.14.4-1+deb12u1~bpo11+1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=59Hk
-----END PGP SIGNATURE-----
News for package flatpak
