From 36d14ed14b2e92b5f707cf66a4ff1ca41a324b7609e9c64ff1032ec8b4801b96 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Bj=C3=B8rn=20Lie?= <zaitor@opensuse.org>
Date: Wed, 15 Feb 2017 11:06:22 +0000
Subject: [PATCH] Accepting request 456108 from GNOME:Next

New upstream release

OBS-URL: https://build.opensuse.org/request/show/456108
OBS-URL: https://build.opensuse.org/package/show/GNOME:Factory/flatpak?expand=0&rev=16
---
 _service             |  2 +-
 _servicedata         |  2 +-
 flatpak-0.8.0.tar.xz |  3 ---
 flatpak-0.8.2.tar.xz |  3 +++
 flatpak.changes      | 54 ++++++++++++++++++++++++++++++++++++++++++++
 flatpak.spec         |  4 ++--
 6 files changed, 61 insertions(+), 7 deletions(-)
 delete mode 100644 flatpak-0.8.0.tar.xz
 create mode 100644 flatpak-0.8.2.tar.xz

diff --git a/_service b/_service
index f286c83..a63cb0d 100644
--- a/_service
+++ b/_service
@@ -4,7 +4,7 @@
     <param name="scm">git</param>
     <param name="versionformat">@PARENT_TAG@</param>
     <param name="changesgenerate">enable</param>
-    <param name="revision">refs/tags/0.8.0</param>
+    <param name="revision">refs/tags/0.8.2</param>
   </service>
   <service name="recompress" mode="disabled">
     <param name="file">*.tar</param>
diff --git a/_servicedata b/_servicedata
index f542f9a..082a4a4 100644
--- a/_servicedata
+++ b/_servicedata
@@ -1,4 +1,4 @@
 <servicedata>
 <service name="tar_scm">
             <param name="url">https://github.com/flatpak/flatpak.git</param>
-          <param name="changesrevision">7f31a1acae8f9825ccd083cf450cf411e467fb68</param></service></servicedata>
\ No newline at end of file
+          <param name="changesrevision">3bd1405364a3c2cb0ffd3ccaf7e75c9a905db44f</param></service></servicedata>
\ No newline at end of file
diff --git a/flatpak-0.8.0.tar.xz b/flatpak-0.8.0.tar.xz
deleted file mode 100644
index 44d5803..0000000
--- a/flatpak-0.8.0.tar.xz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:1fcebe15b55cff9dd121b168503dc99b5c0332429d6ff52b800af5e43b704f77
-size 532784
diff --git a/flatpak-0.8.2.tar.xz b/flatpak-0.8.2.tar.xz
new file mode 100644
index 0000000..65363a6
--- /dev/null
+++ b/flatpak-0.8.2.tar.xz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:95a095f392b429ee69468b1c7580c9784dd0310c23ea75ffe559434db3c72c3a
+size 545108
diff --git a/flatpak.changes b/flatpak.changes
index 7d713ad..7798e58 100644
--- a/flatpak.changes
+++ b/flatpak.changes
@@ -1,3 +1,57 @@
+-------------------------------------------------------------------
+Fri Feb 10 16:45:25 UTC 2017 - kamikazow@opensuse.org
+
+- Update to version 0.8.2:
+  + This is a bugfix and security update:
+    - Some of the bind-mounts that flatpak sets up were not
+      read-only as they should have. This includes: extensions,
+      system fonts, resolv.conf, localtime and machine-id. Many of
+      these are typically only writable by root, but some, like the
+      user-specific fonts and user-installed extensions could be
+      modified from the sandbox.
+  + Other fixes:
+    - There are new configure options for where to install dbus
+      configuration.
+    - Broken symlinks in the root directory no longer break flatpak
+      run.
+    - flatpak run with HOME in /var now works.
+    - dri access now also handles mali devices.
+    - install handles --arch when installing flatpakrefs.
+    - system-helper activation fixed on systemd-less setups.
+    - dbus-proxy now works without /run.
+    - During installation, failing to update a dependency is now
+      not fatal.
+    - /etc is now fully writable when building runtimes.
+    - --filesystem=xdg-config/foo now sets up the bind-mount from
+      the host dir even when not using :create.
+
+-------------------------------------------------------------------
+Fri Feb 10 16:45:02 UTC 2017 - kamikazow@opensuse.org
+
+- Update to version 0.8.1:
+  + This is a bugfix and security update (CVE-2017-5226):
+    - Flatpak now uses seccomp to disallow the TIOCSTI ioctl in the
+      sandbox, which works around the possibility to inject text on
+      the controlling tty (CVE-2017-5226).
+    - This was previously fixed in bubblewrap in 0.1.6, but that
+      change has now been reverted as it introduced other problems
+      for flatpak.
+  + Update bundled bubblewrap to 0.1.7.
+  + Fix writing new file with O_EXCL in the document portal.
+  + Allow appstream data that doesn't have .desktop in the
+    component id, such as data for runtimes.
+  + Drop json-glib dependency from 1.2 to 1.0.
+  + Builder: Fail if unable to read included file.
+  + OCI: Ensure exported layers are readable by everyone.
+  + Fix extra-data download in gnome-software.
+  + Fix update-mime-database trigger when installing via the system
+    helper.
+  + Updating an app by installing a newer bundle now works again.
+  + Make /var/tmp not be on a tmpfs (it is now in
+    ~/.var/app/$appid/cache/tmp).
+  + Updated documentation.
+  + Updated translations.
+
 -------------------------------------------------------------------
 Thu Dec 22 14:43:23 UTC 2016 - zaitor@opensuse.org
 
diff --git a/flatpak.spec b/flatpak.spec
index b1628e8..df5491e 100644
--- a/flatpak.spec
+++ b/flatpak.spec
@@ -1,7 +1,7 @@
 #
 # spec file for package flatpak
 #
-# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -22,7 +22,7 @@
 
 %define libname libflatpak0
 Name:           flatpak
-Version:        0.8.0
+Version:        0.8.2
 Release:        0
 Summary:        Manage OSTree based application bundles
 License:        LGPL-2.1+