[Bug 1946578] Re: Placeholder for CVE-2021-41133

2021-10-14 Thread Andrew Hayzen
Please find attached the debdiff for Ubuntu 21.10 impish. I have performed some testing in a VM and built in a PPA. Let me know if anything has been done incorrectly. ** Attachment added: "Impish CVE debdiff" https://bugs.launchpad.net/ubuntu/+source/flatpak/+bug/1946578/+attachment/5533002/+

[Bug 1946578] Re: Placeholder for CVE-2021-41133

2021-10-12 Thread Andrew Hayzen
** Changed in: flatpak (Ubuntu Impish) Status: New => In Progress ** Changed in: flatpak (Ubuntu Hirsute) Status: New => In Progress ** Changed in: flatpak (Ubuntu Hirsute) Assignee: (unassigned) => Andrew Hayzen (ahayzen) -- You received this bug notification because you are

[Bug 1946578] Re: Placeholder for CVE-2021-41133

2021-10-11 Thread Simon McVittie
I think we have the regressions under control now. https://salsa.debian.org/debian/flatpak/-/commits/wip/1.10.x/ is packaging of 1.10.5 aimed at inclusion in Debian 11, including one post-1.10.5 bug fix https://github.com/flatpak/flatpak/pull/4461 which will hopefully be included in 1.10.6. I'm wa

[Bug 1946578] Re: Placeholder for CVE-2021-41133

2021-10-11 Thread Alex Murray
** Also affects: flatpak (Ubuntu Impish) Importance: Undecided Assignee: Andrew Hayzen (ahayzen) Status: New ** Also affects: flatpak (Ubuntu Focal) Importance: Undecided Status: New ** Also affects: flatpak (Ubuntu Hirsute) Importance: Undecided Status: New **

[Bug 1946578] Re: Placeholder for CVE-2021-41133

2021-10-09 Thread Andrew Hayzen
If someone has the permissions could they add bionic, focal, hirsute, and impish as affected series ? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1946578 Title: Placeholder for CVE-2021-41133 To

[Bug 1946578] Re: Placeholder for CVE-2021-41133

2021-10-09 Thread Andrew Hayzen
** Description changed: + *** Placeholder until regressions are fixed upstream *** + [Links] https://github.com/flatpak/flatpak/security/advisories/GHSA-67h7-w3jq-vh4q https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=995935 https://security-tracker.debian.org/tracker/CVE-2021-41133 + +