-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 17 Apr 2024 19:39:48 +0100
Source: flatpak
Binary: flatpak flatpak-dbgsym flatpak-tests flatpak-tests-dbgsym gir1.2-flatpak-1.0 libflatpak-dev libflatpak0 libflatpak0-dbgsym
Architecture: armel
Version: 1.14.4-1+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: arm Build Daemon (arm-ubc-04) <buildd_armhf-arm-ubc-04@buildd.debian.org>
Changed-By: Simon McVittie <smcv@debian.org>
Description:
 flatpak    - Application deployment framework for desktop apps
 flatpak-tests - Application deployment framework for desktop apps (tests)
 gir1.2-flatpak-1.0 - Application deployment framework for desktop apps (introspection)
 libflatpak-dev - Application deployment framework for desktop apps (development)
 libflatpak0 - Application deployment framework for desktop apps (library)
Changes:
 flatpak (1.14.4-1+deb12u1) bookworm-security; urgency=high
 .
   * d/p/When-starting-non-static-command-using-bwrap-use.patch,
     d/p/test-run-Add-a-reproducer-for-CVE-2024-32462.patch:
     Don't allow an executable name to be misinterpreted as a command-line
     option for bwrap(1). This prevents a sandbox escape where a malicious
     or compromised app could ask xdg-desktop-portal to generate a .desktop
     file with access to files outside the sandbox. (CVE-2024-32462)
   * d/gbp.conf: Use debian/bookworm packaging branch
Checksums-Sha1:
 5d97aec614c4d2f21f6c11deb60b68da887f2692 6151168 flatpak-dbgsym_1.14.4-1+deb12u1_armel.deb
 ecc46d9179851db9361a7a533d9255ef82d33d41 9573548 flatpak-tests-dbgsym_1.14.4-1+deb12u1_armel.deb
 f298ce0a81e49316fe900c0b9a0f6d65bcfe8a20 979256 flatpak-tests_1.14.4-1+deb12u1_armel.deb
 eb5b1bf82a6c5b1b9dc7abb53260de232c17d039 14234 flatpak_1.14.4-1+deb12u1_armel-buildd.buildinfo
 9d5be3b8bcb3f4d401c4c8c2aa6eec0868782539 1230284 flatpak_1.14.4-1+deb12u1_armel.deb
 518fbee86840e468da0f98a02a89492567d00605 23016 gir1.2-flatpak-1.0_1.14.4-1+deb12u1_armel.deb
 ca8371b48053880f1677adefbb96dfc673de3f05 66408 libflatpak-dev_1.14.4-1+deb12u1_armel.deb
 9e394c85bfa9ef54e10999aa6673a963733290a6 1493144 libflatpak0-dbgsym_1.14.4-1+deb12u1_armel.deb
 0a250ee3e8a671f0f47e1936647ce95e42a56f5d 304596 libflatpak0_1.14.4-1+deb12u1_armel.deb
Checksums-Sha256:
 8f4f23d5cf91f16d2c9d1205b58281f0cf8c0352b869d040ace52877a7ba7d22 6151168 flatpak-dbgsym_1.14.4-1+deb12u1_armel.deb
 b46c0ebc520e9ca65707838f74c6bfacc9fbf801ff099ed4a67712cb997fc076 9573548 flatpak-tests-dbgsym_1.14.4-1+deb12u1_armel.deb
 9aa8c840c55576d90f274533c3dff3982db2422a5a28c0b44a1b6c5076bfe9b4 979256 flatpak-tests_1.14.4-1+deb12u1_armel.deb
 553d27e8ed5d6d02695adb5686120c991e5afc0e9c92b5fcda79ca247d0502ca 14234 flatpak_1.14.4-1+deb12u1_armel-buildd.buildinfo
 045682a170b387260e967693664932fa02edd6e4c6d796c994cf2544d517b27b 1230284 flatpak_1.14.4-1+deb12u1_armel.deb
 bc4e7ebb76fd6b73af8a668171009f9cff6f4cdd09fd16c364565e1135faf1cb 23016 gir1.2-flatpak-1.0_1.14.4-1+deb12u1_armel.deb
 7d2a19ebe7c25b0bc1007dbcdc6fb01b37560c8de4bbcd723a535bafba4a6d6a 66408 libflatpak-dev_1.14.4-1+deb12u1_armel.deb
 0345431f38785f6c3a29a2cbc5e96e84b21d7e0747a8e9fb7a4550f34e5a2643 1493144 libflatpak0-dbgsym_1.14.4-1+deb12u1_armel.deb
 37cb1b3cd2cdadf25a4f9a759ed45ec9a86b5ddf49e6d04616545de45db919f9 304596 libflatpak0_1.14.4-1+deb12u1_armel.deb
Files:
 26021a4809affe388a451c3bd17a509c 6151168 debug optional flatpak-dbgsym_1.14.4-1+deb12u1_armel.deb
 fa1cd94d74cd7dabfaa1c0f84ee83da0 9573548 debug optional flatpak-tests-dbgsym_1.14.4-1+deb12u1_armel.deb
 76aaeb49e28f9ab5070780286a952b70 979256 misc optional flatpak-tests_1.14.4-1+deb12u1_armel.deb
 969ffdb279adf12f1bf61829217bb5d8 14234 admin optional flatpak_1.14.4-1+deb12u1_armel-buildd.buildinfo
 434e050554cb2cc1d82fb6a8e4b15b56 1230284 admin optional flatpak_1.14.4-1+deb12u1_armel.deb
 af0c7d8b8e21f04037927a0da102f704 23016 introspection optional gir1.2-flatpak-1.0_1.14.4-1+deb12u1_armel.deb
 840fa0c309c629905b7b07ded9691438 66408 libdevel optional libflatpak-dev_1.14.4-1+deb12u1_armel.deb
 fd244397f382dee0ced27bcdba87ed09 1493144 debug optional libflatpak0-dbgsym_1.14.4-1+deb12u1_armel.deb
 6f2df8e41f8151d5523a0d2fa837cf4c 304596 libs optional libflatpak0_1.14.4-1+deb12u1_armel.deb

-----BEGIN PGP SIGNATURE-----
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=4CaB
-----END PGP SIGNATURE-----