The patches for CVE-2021-43860 (aka GHSA-qpjc-vq3c-572j) include some
test-cases, which are run during build and as part of the autopkgtest.
There is currently no automated test coverage for GHSA-8ch7-5j3h-g4fx.
If possible I would recommend upgrading to 1.12.3 and 1.10.6, rather
than
** Also affects: flatpak (Ubuntu Focal)
Importance: Undecided
Status: New
** Also affects: flatpak (Ubuntu Impish)
Importance: Undecided
Status: New
** Also affects: flatpak (Ubuntu Bionic)
Importance: Undecided
Status: New
--
You received this bug notification
** Changed in: flatpak (Ubuntu)
Status: New => In Progress
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1957716
Title:
Update for CVE-2021-43860 and second github advisory
To manage
Can someone with permission add impish, focal, bionic as affected
series? (hirsute i assume we can skip as it's about to EOL).
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1957716
Title:
Update