This is tagged as security, because this version of the Flatpak runtime container, as compared to the latest released version, it contains subpackages of the following packages with security updates:
These are almost certainly not all relevant in the Flatpak context (especially the systemd ones) - would need to analyze both the included subpackages and the content of those security updates to figure out what are the relevant CVEs.
(This went a long time without a rebuild - in general, we'll plan on much more frequent rebuilds of the runtime to pick up security fixes.)
OK, thanks for the clarification. fyi: CVE-2019-8308 is in Flatpak itself, not in the Fedora Flatpak runtimes so there was no need to bring it up here. Sorry for the noise!
This update has been submitted for stable by bodhi.
This update has been submitted for testing by otaylor.
This update has been pushed to testing.
hallo @otaylor
is this tagged as 'security' update because of CVE-2019-8308?
Installed this as a dependency on Thunderbird, and works well.
This update has been submitted for batched by bodhi.
This is tagged as security, because this version of the Flatpak runtime container, as compared to the latest released version, it contains subpackages of the following packages with security updates:
These are almost certainly not all relevant in the Flatpak context (especially the systemd ones) - would need to analyze both the included subpackages and the content of those security updates to figure out what are the relevant CVEs.
(This went a long time without a rebuild - in general, we'll plan on much more frequent rebuilds of the runtime to pick up security fixes.)
OK, thanks for the clarification. fyi: CVE-2019-8308 is in Flatpak itself, not in the Fedora Flatpak runtimes so there was no need to bring it up here. Sorry for the noise!
This update has been submitted for stable by bodhi.
This update has been pushed to stable.