-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Mon, 27 Feb 2017 11:07:00 +0000 Source: flatpak Binary: flatpak flatpak-builder flatpak-tests gir1.2-flatpak-1.0 libflatpak-dev libflatpak-doc libflatpak0 Architecture: all source Version: 0.8.3-1~bpo8+1 Distribution: jessie-backports Urgency: medium Maintainer: Utopia Maintenance Team <pkg-utopia-maintainers@lists.alioth.debian.org> Changed-By: Simon McVittie <smcv@debian.org> Closes: 846338 855129 Description: flatpak - Application deployment framework for desktop apps flatpak-builder - Flatpak application building helper flatpak-tests - Application deployment framework for desktop apps (tests) gir1.2-flatpak-1.0 - Application deployment framework for desktop apps (introspection) libflatpak0 - Application deployment framework for desktop apps (library) libflatpak-dev - Application deployment framework for desktop apps (development) libflatpak-doc - Application deployment framework for desktop apps (documentation) Changes: flatpak (0.8.3-1~bpo8+1) jessie-backports; urgency=medium . * Backport to jessie - debian/gbp.conf: adjust for this branch - debian/control: (build-)depend on libgtk-3-bin, not gtk-update-icon-cache - d/p/debian/Try-gtk-3.0-version-of-the-icon-cache-utility-first.patch: try to use gtk-update-icon-cache-3.0 before gtk-update-icon-cache - d/p/flatpak-dir-Adapt-to-old-GLib-APIs.patch: avoid relying on newer GLib GFileEnumerator API - d/p/flatpak-json-Backport-G_DECLARE_FINAL_TYPE-G_DECLARE_DERI.patch: backport convenience macros from GLib 2.44, which are slightly too new for jessie . flatpak (0.8.3-1) unstable; urgency=medium . * New upstream bugfix release - fixes portals' ability to identify confined apps (Closes: #855129) - better support for third-party (proprietary) OpenGL drivers - better handling of errors for extra-data - handle extra-data properly for runtimes (as well as apps) - respect required version for runtimes (as well as apps) - flatpak list: Don't break if some local ref is not deployed - builder: Look for appstream data in /app/share/metadata also - builder: Fix buildsystem=cmake builds - Add progress reporting to extra-data download - Fix uid/gid for directories in document portal * Duplicate the profile.d snippet in /etc/X11/Xsession.d so it applies to X11 sessions, not just login shells. This matches the upstream intention: X11 sessions have traditionally run in a login shell on Red Hat derivatives, but not in Debian derivatives. (Closes: #846338) . flatpak (0.8.2-1) unstable; urgency=medium . * New upstream bugfix release - drop remaining patch, applied upstream - security fix: prevent writing to per-user-installed fonts and Flatpak extensions (typically locales) * d/control: flatpak-tests Recommends python, which is needed for one test (silencing a lintian warning) . flatpak (0.8.1-1) unstable; urgency=medium . * New upstream release, very similar to 0.8.0-2 - drop all patches * d/p/flatpak-system-helper-remove-dangling-reference-to-EXTERN.patch: do not search /export/share, which seems to have been unintended . flatpak (0.8.0-2) unstable; urgency=medium . * d/p/Use-seccomp-to-filter-out-TIOCSTI-ioctl.patch: Add patch from upstream to prevent contained apps from using TIOCSTI ioctl. This would let the app inject commands into the terminal from which it was invoked (CVE-2017-5226). This was initially fixed in bubblewrap by calling setsid(), but that breaks the ability to use Ctrl+Z or Ctrl+C on a flatpak-confined process, so it is being made optional; prevent the attack here instead, in a way that doesn't break shells. * d/p/Fix-update-of-standalone-bundle.patch: Add patch from upstream to fix updating an existing app with "flatpak install --bundle foo.flatpak" * d/p/Make-sure-var-tmp-is-not-on-tmpfs.patch: Add patch from upstream to mount ~/.var/APP/cache/tmp at /var/tmp inside the sandbox, so apps can rely on /var/tmp being on disk * d/p/Document-the-DefaultBranch-key.patch, d/p/Document-RuntimeRepo-key.patch: Add patches from upstream to fill in some missing documentation * d/p/testlibrary-ensure-that-contents_array-is-NULL-terminated.patch, d/p/tests-Install-testpython.py-executable.patch, d/p/tests-Move-the-test-repo-to-a-subdirectory-repos-test.patch: Fix some bugs in the tests * debian/tests/: split out builder-python into a separate autopkgtest, it too has more dependencies . flatpak (0.8.0-1) unstable; urgency=medium . * New upstream stable release - Bump bubblewrap dependencies to 0.1.5 following configure.ac - Bump ostree dependency to 2016.15 following upstream release notes (the minimal dependency is 2016.14, but 2016.15 is recommended) - debian/libflatpak0.symbols: add new ABIs - d/p/pull-Exit-early-on-error-without-aborting-transaction.patch: drop patch, applied upstream * debian/gbp.conf: switch upstream branch to debian/0.8.x to follow the first upstream stable-branch * debian/watch: only follow stable-branches * debian/org.freedesktop.Flatpak.pkla: configure polkit 0.105 to allow sudoers to uninstall apps and runtimes without re-authenticating, following upstream changes to the org.freedesktop.Flatpak.rules used in newer polkit versions * d/p/Update-Polish-translation.patch: update translated strings from upstream git * d/p/flatpak-builder-1-fix-typo.patch: fix a typo in the man page Checksums-Sha1: 6c97af50d488c9d586b2308eabcff74f981ea800 32852 libflatpak-doc_0.8.3-1~bpo8+1_all.deb f3625a70b5a76d62ec4fedd27ae9fa910b1ebb39 2931 flatpak_0.8.3-1~bpo8+1.dsc 32c932a5b0f44e1732b71d49d7ba0276a1620a6a 18696 flatpak_0.8.3-1~bpo8+1.debian.tar.xz Checksums-Sha256: efa7b057a52052dfd8cd7992aed451ffa627952effdfcddd553b4ee68edc50a6 32852 libflatpak-doc_0.8.3-1~bpo8+1_all.deb 37607bcce5177bd6221fa6de77e905b0116e02c58014d4294dede6528ed943fa 2931 flatpak_0.8.3-1~bpo8+1.dsc f8278e1159c57a5b4546aacaf052fd81a0489cc787b682a66b696b8dda3a3486 18696 flatpak_0.8.3-1~bpo8+1.debian.tar.xz Files: 4114780011436612c03809bfb3424639 32852 doc optional libflatpak-doc_0.8.3-1~bpo8+1_all.deb 0c50959122c7fdedd14a77d639d576e9 2931 admin optional flatpak_0.8.3-1~bpo8+1.dsc b1452decac851e1148da9056eac14594 18696 admin optional flatpak_0.8.3-1~bpo8+1.debian.tar.xz -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEE2pjyXAhxxJpZ6v8sTej/KmPHzJAFAli0IMYACgkQTej/KmPH zJClZw//SiMBYBCeyvBIOUc1Crv/7Ys+52mqEwmGNyaZSg1OQUMCIkr/jvKFPKqf mABGOkurkmjc/2f1AfsxsGlN69OHWl8RI9xSzw0CJMDitqH+PfdgEtBxK4HnkC21 IsFF+Ct37GC7VAyqDwDXhtaDrD/yYYY41LhGz6VeOcM/DbjpQF+X60Kd9Jwdq6zf aVGtKRX5YMruK5y/AgdYpG57p9Sbqu5/eijGVvh9dlQUOtlTXwf8A4xHsr6Gyiv4 79LPufIvzRlLQAooEnz3rJl2S3f/NEC0DPPva/Juw1dHPUwvvkRWUrgiHW6eAbFZ JHzhvEV76+kOy9NxOf/NGkQbbv275rAXSyEpqaFqWNPE3Lcjvq97eMlm/KpEvkM6 MlaYgbZFHbUAJGdStygb1wRym8NS8v//frRHCJBEtEvtH7heZ0Jv/nEZqS1niHiy cxSWw27Z5FeRrxM1Vut9FF0TXKys9wUyKEvjjz+Gj7nvtaRyQXsbPtXTsCpBu0ku 67qQ4yYlpA9UQLi+u0a9bBG67rDd9VTSDZ+Iqrvxrq/EFYY6mKO4PyOVe1ig5Rzn 7v4Sp+mZfshsGuxcQjlm8Hlot7y/R4sAolbDO/p8AzvMSVbu4MJAFi3q6WIdP6HI SrDUpZ7unbgthxwbhdcBpROG3IXB74aom7M/02AKYVT4s3f+WPM= =m493 -----END PGP SIGNATURE-----