Accepting request 1072671 from home:AndreasStieger:branches:GNOME:Factory
bugzilla references OBS-URL: https://build.opensuse.org/request/show/1072671 OBS-URL: https://build.opensuse.org/package/show/GNOME:Factory/flatpak?expand=0&rev=183
This commit is contained in:
Git OBS Bridge
parent
e77f94829d
commit
6966718bf0
@ -5,13 +5,13 @@ Thu Mar 16 16:15:42 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com>
|
|||||||
+ Escape special characters when displaying permissions and
|
+ Escape special characters when displaying permissions and
|
||||||
metadata, preventing malicious apps from manipulating the
|
metadata, preventing malicious apps from manipulating the
|
||||||
appearance of the permissions list using crafted metadata
|
appearance of the permissions list using crafted metadata
|
||||||
(CVE-2023-28101).
|
(CVE-2023-28101, boo#1209410).
|
||||||
+ If a Flatpak app is run on a Linux virtual console (tty1, tty2,
|
+ If a Flatpak app is run on a Linux virtual console (tty1, tty2,
|
||||||
etc.), don't allow copy/paste via the TIOCLINUX ioctl
|
etc.), don't allow copy/paste via the TIOCLINUX ioctl
|
||||||
(CVE-2023-28100). Note that this is specific to virtual
|
(CVE-2023-28100). Note that this is specific to virtual
|
||||||
consoles: Flatpak is not vulnerable to this if run from a
|
consoles: Flatpak is not vulnerable to this if run from a
|
||||||
graphical terminal emulator such as xterm, gnome-terminal or
|
graphical terminal emulator such as xterm, gnome-terminal or
|
||||||
Konsole.
|
Konsole. (boo#1209411)
|
||||||
+ Updated translations.
|
+ Updated translations.
|
||||||
|
|
||||||
-------------------------------------------------------------------
|
-------------------------------------------------------------------
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user