Hello community, here is the log from the commit of package flatpak for openSUSE:Factory checked in at 2019-04-01 12:31:27 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/flatpak (Old) and /work/SRC/openSUSE:Factory/.flatpak.new.25356 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "flatpak" Mon Apr 1 12:31:27 2019 rev:28 rq:689362 version:1.2.4 Changes: -------- --- /work/SRC/openSUSE:Factory/flatpak/flatpak.changes 2019-02-24 17:06:14.156599400 +0100 +++ /work/SRC/openSUSE:Factory/.flatpak.new.25356/flatpak.changes 2019-04-01 12:31:34.109768155 +0200 @@ -1,0 +2,16 @@ +Thu Mar 28 13:05:50 UTC 2019 - Andrei Dziahel <[email protected]> + +- Update to verson 1.2.4 (CVE-2019-10063): + + It has been discovered that the previous fix for CVE-2017-5226, + which uses seccomp to prevent sandboxed apps from using the + (dangerous) TIOCSTI ioctl was only incomplete on 64bit arches. + This is now fixed. + + seccomp: Only compare the low 32bit of the TIOCSTI ioctl args. + + Support multiple nvidia cards on the machine + + Fix support for systems where XDG_RUNTIME_DIR is /var/run which + is a symlink like gentoo. + + Fix potential crash when updating apps. + + flatpak list --arch now works correctly again. + + Updated translations. + +------------------------------------------------------------------- Old: ---- flatpak-1.2.3.tar.xz New: ---- flatpak-1.2.4.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ flatpak.spec ++++++ --- /var/tmp/diff_new_pack.RKsnoE/_old 2019-04-01 12:31:35.553768603 +0200 +++ /var/tmp/diff_new_pack.RKsnoE/_new 2019-04-01 12:31:35.553768603 +0200 @@ -18,7 +18,7 @@ %define libname libflatpak0 Name: flatpak -Version: 1.2.3 +Version: 1.2.4 Release: 0 Summary: OSTree based application bundles management License: LGPL-2.1-or-later ++++++ _service ++++++ --- /var/tmp/diff_new_pack.RKsnoE/_old 2019-04-01 12:31:35.601768618 +0200 +++ /var/tmp/diff_new_pack.RKsnoE/_new 2019-04-01 12:31:35.613768622 +0200 @@ -4,7 +4,7 @@ <param name="scm">git</param> <param name="versionformat">@PARENT_TAG@</param> <param name="changesgenerate">enable</param> - <param name="revision">refs/tags/1.2.3</param> + <param name="revision">refs/tags/1.2.4</param> </service> <service name="recompress" mode="disabled"> <param name="file">*.tar</param> ++++++ _servicedata ++++++ --- /var/tmp/diff_new_pack.RKsnoE/_old 2019-04-01 12:31:35.629768628 +0200 +++ /var/tmp/diff_new_pack.RKsnoE/_new 2019-04-01 12:31:35.629768628 +0200 @@ -1,4 +1,4 @@ <servicedata> <service name="tar_scm"> <param name="url">https://github.com/flatpak/flatpak.git</param> - <param name="changesrevision">428c7bf8566d1cdb9f5eafccde1a19a41aeab144</param></service></servicedata> \ No newline at end of file + <param name="changesrevision">2bfa0060b089a20de5fbf18d018f8f1b108d2480</param></service></servicedata> ++++++ flatpak-1.2.3.tar.xz -> flatpak-1.2.4.tar.xz ++++++ ++++ 14097 lines of diff (skipped)
