-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 17 Apr 2024 19:39:48 +0100
Source: flatpak
Binary: libflatpak-doc
Architecture: all
Version: 1.14.4-1+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: amd64 Build Daemon (x86-grnet-03) <buildd_amd64-x86-grnet-03@buildd.debian.org>
Changed-By: Simon McVittie <smcv@debian.org>
Description:
 libflatpak-doc - Application deployment framework for desktop apps (documentation)
Changes:
 flatpak (1.14.4-1+deb12u1) bookworm-security; urgency=high
 .
   * d/p/When-starting-non-static-command-using-bwrap-use.patch,
     d/p/test-run-Add-a-reproducer-for-CVE-2024-32462.patch:
     Don't allow an executable name to be misinterpreted as a command-line
     option for bwrap(1). This prevents a sandbox escape where a malicious
     or compromised app could ask xdg-desktop-portal to generate a .desktop
     file with access to files outside the sandbox. (CVE-2024-32462)
   * d/gbp.conf: Use debian/bookworm packaging branch
Checksums-Sha1:
 78993a1ff0159c73e6f3e719a16f8f606f81ca6a 12266 flatpak_1.14.4-1+deb12u1_all-buildd.buildinfo
 b981621c2a7762a57dd76e51821fe6ae5be28bc8 126636 libflatpak-doc_1.14.4-1+deb12u1_all.deb
Checksums-Sha256:
 fdb58333ff9b3fab438b1c3cfe7cdb36870e2b360729e32e580170cf8a59698b 12266 flatpak_1.14.4-1+deb12u1_all-buildd.buildinfo
 5af12e103a5c08986a46e7a9b5fdc114ad24955019a241df221ef89cfc9baa27 126636 libflatpak-doc_1.14.4-1+deb12u1_all.deb
Files:
 73ff831413de80d5e8aa5672154f9168 12266 admin optional flatpak_1.14.4-1+deb12u1_all-buildd.buildinfo
 ffc781dd98bfa5816c03061b1abe5495 126636 doc optional libflatpak-doc_1.14.4-1+deb12u1_all.deb

-----BEGIN PGP SIGNATURE-----
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=+HWb
-----END PGP SIGNATURE-----