-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 17 Apr 2024 19:39:48 +0100
Source: flatpak
Binary: flatpak flatpak-dbgsym flatpak-tests flatpak-tests-dbgsym gir1.2-flatpak-1.0 libflatpak-dev libflatpak0 libflatpak0-dbgsym
Architecture: arm64
Version: 1.14.4-1+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: arm Build Daemon (arm-conova-04) <buildd_arm64-arm-conova-04@buildd.debian.org>
Changed-By: Simon McVittie <smcv@debian.org>
Description:
 flatpak    - Application deployment framework for desktop apps
 flatpak-tests - Application deployment framework for desktop apps (tests)
 gir1.2-flatpak-1.0 - Application deployment framework for desktop apps (introspection)
 libflatpak-dev - Application deployment framework for desktop apps (development)
 libflatpak0 - Application deployment framework for desktop apps (library)
Changes:
 flatpak (1.14.4-1+deb12u1) bookworm-security; urgency=high
 .
   * d/p/When-starting-non-static-command-using-bwrap-use.patch,
     d/p/test-run-Add-a-reproducer-for-CVE-2024-32462.patch:
     Don't allow an executable name to be misinterpreted as a command-line
     option for bwrap(1). This prevents a sandbox escape where a malicious
     or compromised app could ask xdg-desktop-portal to generate a .desktop
     file with access to files outside the sandbox. (CVE-2024-32462)
   * d/gbp.conf: Use debian/bookworm packaging branch
Checksums-Sha1:
 b06b6a5844a01dd525b31acded9cf54d7f7d51c5 6537872 flatpak-dbgsym_1.14.4-1+deb12u1_arm64.deb
 7b0b58315fe00b424abe9124cb483df9bac682f4 10223544 flatpak-tests-dbgsym_1.14.4-1+deb12u1_arm64.deb
 9193b8628578f48266812e5344235d17473c0146 1093540 flatpak-tests_1.14.4-1+deb12u1_arm64.deb
 84d8ac27c5abdd87e0782e453dec014df2202f8e 14366 flatpak_1.14.4-1+deb12u1_arm64-buildd.buildinfo
 9362be9bc2d63eda9c07fed6f8007ef0133b832c 1317748 flatpak_1.14.4-1+deb12u1_arm64.deb
 4e0604c2a345271db9ec35e3e41f1678104c556a 23032 gir1.2-flatpak-1.0_1.14.4-1+deb12u1_arm64.deb
 68b28cd5af7677be702caf4c06410afe64a134ca 66408 libflatpak-dev_1.14.4-1+deb12u1_arm64.deb
 580003f9d2d71a500864bbdb83117087389f5698 1523636 libflatpak0-dbgsym_1.14.4-1+deb12u1_arm64.deb
 2f09cb13fc892ea351917f960b11ab15c9c2241d 320284 libflatpak0_1.14.4-1+deb12u1_arm64.deb
Checksums-Sha256:
 ac8fac35057750d6320afe421754ea149f7b649fd644f2d8417b95cf30f865b1 6537872 flatpak-dbgsym_1.14.4-1+deb12u1_arm64.deb
 99b3057d03611b79939c91a0d8276de51765a07708fab79d53709eb322b399ad 10223544 flatpak-tests-dbgsym_1.14.4-1+deb12u1_arm64.deb
 ca246871de71f57f3234c2121d3824e1026b4d5216c3e1eff8d088a637e8403a 1093540 flatpak-tests_1.14.4-1+deb12u1_arm64.deb
 18a73527920b401dc0aa77c9e4513a2c8e4b8fb5e4255ee5a57ff0bbc0eb0ba2 14366 flatpak_1.14.4-1+deb12u1_arm64-buildd.buildinfo
 01ee6f0b97e26e73a6d42650b2b48ecd7b6cab7e54c2b9eff22acf02209147d9 1317748 flatpak_1.14.4-1+deb12u1_arm64.deb
 fd36dff201da2f5bf273aa63a5d584eea2f1527bae3a31120230f6368319e3a0 23032 gir1.2-flatpak-1.0_1.14.4-1+deb12u1_arm64.deb
 b3c71a3c09253c2bacfcd63466b89daee9b8faa9e0addcb8d8588c40db585e4e 66408 libflatpak-dev_1.14.4-1+deb12u1_arm64.deb
 2e6822ced286be228895384cdf9d7c2f0c04ee5cc1451d38e646d4b668add3a9 1523636 libflatpak0-dbgsym_1.14.4-1+deb12u1_arm64.deb
 75b3743f8df154ca43d4951eb40c837c6818e7a6555915e99b136f389dfb81a2 320284 libflatpak0_1.14.4-1+deb12u1_arm64.deb
Files:
 c6ec499ce6c810fe0ee44074416a1050 6537872 debug optional flatpak-dbgsym_1.14.4-1+deb12u1_arm64.deb
 cdb92c62672bcf6e7fbbdbc4495c8bde 10223544 debug optional flatpak-tests-dbgsym_1.14.4-1+deb12u1_arm64.deb
 03bcd4f816bdad147fe3065b8cd1f496 1093540 misc optional flatpak-tests_1.14.4-1+deb12u1_arm64.deb
 057134855eea4e515900291bde3b433d 14366 admin optional flatpak_1.14.4-1+deb12u1_arm64-buildd.buildinfo
 71ab07f4afb03901244f2a3b0299515b 1317748 admin optional flatpak_1.14.4-1+deb12u1_arm64.deb
 89d4a97bbc7397cc435ffd6a197d4bc3 23032 introspection optional gir1.2-flatpak-1.0_1.14.4-1+deb12u1_arm64.deb
 d4f19a4492670293cefef52963d3700a 66408 libdevel optional libflatpak-dev_1.14.4-1+deb12u1_arm64.deb
 e2b880f89c708e9c4e0a86c3e1c66cbc 1523636 debug optional libflatpak0-dbgsym_1.14.4-1+deb12u1_arm64.deb
 cfc8202f37d45835a91a4ab6427d0d99 320284 libs optional libflatpak0_1.14.4-1+deb12u1_arm64.deb

-----BEGIN PGP SIGNATURE-----
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=XW25
-----END PGP SIGNATURE-----