flatpak 1.14.6-1ubuntu0.1 source package in Ubuntu
Changelog
flatpak (1.14.6-1ubuntu0.1) noble-security; urgency=medium
* SECURITY UPDATE: Access outside sandbox
- debian/patches/CVE-2024-42472-1.patch: don't follow symlinks when
mounting persisted directories in common/flatpak-context.c.
- debian/patches/CVE-2024-42472-2.patch: add test coverage for --persist
in test/test-run.sh.
- debian/patches/CVE-2024-42472-3.patch: add --bind-fd and --ro-bind-fd to
subprojects/bubblerap.c.
- debian/control: makes flatpak depend on bubblerap with --bind-fd feature
backported to avoid race condition (LP: #2077087)
- CVE-2024-42472
-- Leonidas Da Silva Barbosa <email address hidden> Mon, 23 Sep 2024 15:35:49 -0300
Upload details
- Uploaded by:
- Leonidas S. Barbosa
- Uploaded to:
- Noble
- Original maintainer:
- Ubuntu Developers
- Architectures:
- linux-any all
- Section:
- admin
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Noble | updates | universe | misc | |
| Noble | security | universe | misc |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| flatpak_1.14.6.orig.tar.xz | 1.6 MiB | 538f36b2c6f8c70eefd12d13ad5b1ad830820106a8bd3a9f6b8e4d9de81e4946 |
| flatpak_1.14.6.orig.tar.xz.asc | 833 bytes | cea823b8b03abcdc07c92912f8795e046912ad616c9ade4149abf10703d37ec7 |
| flatpak_1.14.6-1ubuntu0.1.debian.tar.xz | 38.1 KiB | b8a43e42eae94d70fc28676dd579c3a2117bf878f653bbfcf23424ba36144dc1 |
| flatpak_1.14.6-1ubuntu0.1.dsc | 3.9 KiB | 12f8262722f5bff4e92957ff3d36b94c424fe824e6c69359cecb241864e046f6 |
Available diffs
Binary packages built by this source
- flatpak: Application deployment framework for desktop apps
Flatpak installs, manages and runs sandboxed desktop application bundles.
Application bundles run partially isolated from the wider system, using
containerization techniques such as namespaces to prevent direct access
to system resources. Resources from outside the sandbox can be accessed
via "portal" services, which are responsible for access control; for
example, the Documents portal displays an "Open" dialog outside the
sandbox, then allows the application to access only the selected file.
.
Each application uses a specified "runtime", or set of libraries, which is
available as /usr inside its sandbox. This can be used to run application
bundles with multiple, potentially incompatible sets of dependencies within
the same desktop environment.
.
This package contains the services and executables needed to install and
launch sandboxed applications, and the portal services needed to provide
limited access to resources outside the sandbox.
- flatpak-dbgsym: debug symbols for flatpak
- flatpak-tests: Application deployment framework for desktop apps (tests)
Flatpak installs, manages and runs sandboxed desktop application bundles.
See the flatpak package for a more comprehensive description.
.
This package contains automated tests.
- flatpak-tests-dbgsym: debug symbols for flatpak-tests
- gir1.2-flatpak-1.0: Application deployment framework for desktop apps (introspection)
Flatpak installs, manages and runs sandboxed desktop application bundles.
See the flatpak package for a more comprehensive description.
.
This package can be used by other packages using the GIRepository format to
generate dynamic bindings for libflatpak0.
- libflatpak-dev: Application deployment framework for desktop apps (development)
Flatpak installs, manages and runs sandboxed desktop application bundles.
See the flatpak package for a more comprehensive description.
.
This package contains development headers and pkg-config metadata
for libflatpak0, and the flatpak-coredump and flatpak-bisect scripts used
to debug Flatpak applications.
- libflatpak-doc: Application deployment framework for desktop apps (documentation)
Flatpak installs, manages and runs sandboxed desktop application bundles.
See the flatpak package for a more comprehensive description.
.
This package contains reference documentation for libflatpak0.
- libflatpak0: Application deployment framework for desktop apps (library)
Flatpak installs, manages and runs sandboxed desktop application bundles.
See the flatpak package for a more comprehensive description.
.
This package contains the flatpak shared library, used by higher level
package management tools like gnome-software.
- libflatpak0-dbgsym: debug symbols for libflatpak0
