Accepting request 689362 from GNOME:Factory

- Update to verson 1.2.4 (CVE-2019-10063): + It has been discovered that the previous fix for CVE-2017-5226, which uses seccomp to prevent sandboxed apps from using the (dangerous) TIOCSTI ioctl was only incomplete on 64bit arches. This is now fixed. + seccomp: Only compare the low 32bit of the TIOCSTI ioctl args. + Support multiple nvidia cards on the machine + Fix support for systems where XDG_RUNTIME_DIR is /var/run which is a symlink like gentoo. + Fix potential crash when updating apps. + flatpak list --arch now works correctly again. + Updated translations. OBS-URL: https://build.opensuse.org/request/show/689362 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/flatpak?expand=0&rev=28
2019-04-01 10:31:27 +00:00 · 2019-04-01 10:31:27 +00:00 · ad6a5f6b0d
commit ad6a5f6b0d
parent 50465a1893 9eb7bf8d66
6 changed files with 22 additions and 6 deletions
--- a/2
+++ b/2
@ -4,7 +4,7 @@
    <param name="scm">git</param>
    <param name="versionformat">@PARENT_TAG@</param>
    <param name="changesgenerate">enable</param>
-    <param name="revision">refs/tags/1.2.3</param>
+    <param name="revision">refs/tags/1.2.4</param>
  </service>
  <service name="recompress" mode="disabled">
    <param name="file">*.tar</param>
--- a/2
+++ b/2
@ -1,4 +1,4 @@
 <servicedata>
 <service name="tar_scm">
                <param name="url">https://github.com/flatpak/flatpak.git</param>
-              <param name="changesrevision">428c7bf8566d1cdb9f5eafccde1a19a41aeab144</param></service></servicedata>
+              <param name="changesrevision">2bfa0060b089a20de5fbf18d018f8f1b108d2480</param></service></servicedata>
--- a/flatpak-1.2.3.tar.xz
+++ b/flatpak-1.2.3.tar.xz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:50201d99a77bb1968971ee96bf543b656d50024fad6d9251070b47316cfae2f0
-size 799440
--- a/flatpak-1.2.4.tar.xz
+++ b/flatpak-1.2.4.tar.xz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:cc09fc42e84955cecd6e5812b2159bd84bb0ab10425c4df6b5228e9a410d048c
+size 799924
--- a/flatpak.changes
+++ b/flatpak.changes
@ -1,3 +1,19 @@
+-------------------------------------------------------------------
+Thu Mar 28 13:05:50 UTC 2019 - Andrei Dziahel <develop7@develop7.info>
+
+- Update to verson 1.2.4 (CVE-2019-10063):
+  + It has been discovered that the previous fix for CVE-2017-5226,
+    which uses seccomp to prevent sandboxed apps from using the
+    (dangerous) TIOCSTI ioctl was only incomplete on 64bit arches.
+    This is now fixed.
+  + seccomp: Only compare the low 32bit of the TIOCSTI ioctl args.
+  + Support multiple nvidia cards on the machine
+  + Fix support for systems where XDG_RUNTIME_DIR is /var/run which
+    is a symlink like gentoo.
+  + Fix potential crash when updating apps.
+  + flatpak list --arch now works correctly again.
+  + Updated translations.
+
 -------------------------------------------------------------------
 Wed Feb 13 08:06:06 UTC 2019 - alarrosa@suse.com

--- a/flatpak.spec
+++ b/flatpak.spec
@ -18,7 +18,7 @@

 %define libname libflatpak0
 Name:           flatpak
-Version:        1.2.3
+Version:        1.2.4
 Release:        0
 Summary:        OSTree based application bundles management
 License:        LGPL-2.1-or-later