Accepted flatpak 0.8.0-2 (source) into unstable

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Wed, 18 Jan 2017 00:02:19 +0000
Source: flatpak
Binary: flatpak flatpak-builder flatpak-tests gir1.2-flatpak-1.0 libflatpak-dev libflatpak-doc libflatpak0
Architecture: source
Version: 0.8.0-2
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team <pkg-utopia-maintainers@lists.alioth.debian.org>
Changed-By: Simon McVittie <smcv@debian.org>
Description:
 flatpak    - Application deployment framework for desktop apps
 flatpak-builder - Flatpak application building helper
 flatpak-tests - Application deployment framework for desktop apps (tests)
 gir1.2-flatpak-1.0 - Application deployment framework for desktop apps (introspection)
 libflatpak-dev - Application deployment framework for desktop apps (development)
 libflatpak-doc - Application deployment framework for desktop apps (documentation)
 libflatpak0 - Application deployment framework for desktop apps (library)
Changes:
 flatpak (0.8.0-2) unstable; urgency=medium
 .
   * d/p/Use-seccomp-to-filter-out-TIOCSTI-ioctl.patch:
     Add patch from upstream to prevent contained apps from using
     TIOCSTI ioctl. This would let the app inject commands into the
     terminal from which it was invoked (CVE-2017-5226). This was
     initially fixed in bubblewrap by calling setsid(), but that
     breaks the ability to use Ctrl+Z or Ctrl+C on a flatpak-confined
     process, so it is being made optional; prevent the attack here
     instead, in a way that doesn't break shells.
   * d/p/Fix-update-of-standalone-bundle.patch:
     Add patch from upstream to fix updating an existing app with
     "flatpak install --bundle foo.flatpak"
   * d/p/Make-sure-var-tmp-is-not-on-tmpfs.patch:
     Add patch from upstream to mount ~/.var/APP/cache/tmp at /var/tmp
     inside the sandbox, so apps can rely on /var/tmp being on disk
   * d/p/Document-the-DefaultBranch-key.patch,
     d/p/Document-RuntimeRepo-key.patch:
     Add patches from upstream to fill in some missing documentation
   * d/p/testlibrary-ensure-that-contents_array-is-NULL-terminated.patch,
     d/p/tests-Install-testpython.py-executable.patch,
     d/p/tests-Move-the-test-repo-to-a-subdirectory-repos-test.patch:
     Fix some bugs in the tests
   * debian/tests/: split out builder-python into a separate autopkgtest,
     it too has more dependencies
Checksums-Sha1:
 4df596262280ab7a5ce23c8858154962d0f280d1 2990 flatpak_0.8.0-2.dsc
 81c7cd833b72fba85d33103b3a59553fcfc8c235 22940 flatpak_0.8.0-2.debian.tar.xz
Checksums-Sha256:
 0b99313a545f7ef9bdfeca673e9971266096a232cefecb591c4d3b9be6b3ad96 2990 flatpak_0.8.0-2.dsc
 a7306b355e21cfa85450a81f25ae8638316aa940c96023823f7821d41c79e7e9 22940 flatpak_0.8.0-2.debian.tar.xz
Files:
 7f639a634f1e7396e7306cc22c80dd6d 2990 admin optional flatpak_0.8.0-2.dsc
 bd7b8b9d7e037767a8e7029ecc13ec9a 22940 admin optional flatpak_0.8.0-2.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=XgGF
-----END PGP SIGNATURE-----