pool/flatpak
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Accepting request 689362 from GNOME:Factory

Browse Source 
- Update to verson 1.2.4 (CVE-2019-10063):
  + It has been discovered that the previous fix for CVE-2017-5226,
    which uses seccomp to prevent sandboxed apps from using the
    (dangerous) TIOCSTI ioctl was only incomplete on 64bit arches.
    This is now fixed.
  + seccomp: Only compare the low 32bit of the TIOCSTI ioctl args.
  + Support multiple nvidia cards on the machine
  + Fix support for systems where XDG_RUNTIME_DIR is /var/run which
    is a symlink like gentoo.
  + Fix potential crash when updating apps.
  + flatpak list --arch now works correctly again.
  + Updated translations.

OBS-URL: https://build.opensuse.org/request/show/689362
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/flatpak?expand=0&rev=28
This commit is contained in:
Dominique Leuenberger 2019-04-01 10:31:27 +00:00 committed by Git OBS Bridge
commit ad6a5f6b0d
6 changed files with 22 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
_service
View File

@ -4,7 +4,7 @@
<param name="scm">git</param> <param name="scm">git</param>
<param name="versionformat">@PARENT_TAG@</param> <param name="versionformat">@PARENT_TAG@</param>
<param name="changesgenerate">enable</param> <param name="changesgenerate">enable</param>
<param name="revision">refs/tags/1.2.3</param> <param name="revision">refs/tags/1.2.4</param>
</service> </service>
<service name="recompress" mode="disabled"> <service name="recompress" mode="disabled">
<param name="file">*.tar</param> <param name="file">*.tar</param>

2
_servicedata
View File

@ -1,4 +1,4 @@
<servicedata> <servicedata>
<service name="tar_scm"> <service name="tar_scm">
<param name="url">https://github.com/flatpak/flatpak.git</param> <param name="url">https://github.com/flatpak/flatpak.git</param>
<param name="changesrevision">428c7bf8566d1cdb9f5eafccde1a19a41aeab144</param></service></servicedata> <param name="changesrevision">2bfa0060b089a20de5fbf18d018f8f1b108d2480</param></service></servicedata>

3
flatpak-1.2.3.tar.xz
View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:50201d99a77bb1968971ee96bf543b656d50024fad6d9251070b47316cfae2f0
size 799440

3
flatpak-1.2.4.tar.xz Normal file
View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:cc09fc42e84955cecd6e5812b2159bd84bb0ab10425c4df6b5228e9a410d048c
size 799924

16
flatpak.changes
View File

@ -1,3 +1,19 @@
-------------------------------------------------------------------
Thu Mar 28 13:05:50 UTC 2019 - Andrei Dziahel <develop7@develop7.info>
- Update to verson 1.2.4 (CVE-2019-10063):
+ It has been discovered that the previous fix for CVE-2017-5226,
which uses seccomp to prevent sandboxed apps from using the
(dangerous) TIOCSTI ioctl was only incomplete on 64bit arches.
This is now fixed.
+ seccomp: Only compare the low 32bit of the TIOCSTI ioctl args.
+ Support multiple nvidia cards on the machine
+ Fix support for systems where XDG_RUNTIME_DIR is /var/run which
is a symlink like gentoo.
+ Fix potential crash when updating apps.
+ flatpak list --arch now works correctly again.
+ Updated translations.
------------------------------------------------------------------- -------------------------------------------------------------------
Wed Feb 13 08:06:06 UTC 2019 - alarrosa@suse.com Wed Feb 13 08:06:06 UTC 2019 - alarrosa@suse.com

2
flatpak.spec
View File

@ -18,7 +18,7 @@
%define libname libflatpak0 %define libname libflatpak0
Name: flatpak Name: flatpak
Version: 1.2.3 Version: 1.2.4
Release: 0 Release: 0
Summary: OSTree based application bundles management Summary: OSTree based application bundles management
License: LGPL-2.1-or-later License: LGPL-2.1-or-later