FEDORA-FLATPAK-2019-4fd2dcf159

security update in Fedora 29 Flatpaks for flatpak-runtime

Status: stable 5 months ago

Update runtime packages to include latest F29 updates.

Comments 9

This update has been submitted for testing by otaylor.

This update has been pushed to testing.

hallo @otaylor

is this tagged as 'security' update because of CVE-2019-8308?

Installed this as a dependency on Thunderbird, and works well.

karma: +1

This update has been submitted for batched by bodhi.

This is tagged as security, because this version of the Flatpak runtime container, as compared to the latest released version, it contains subpackages of the following packages with security updates:

These are almost certainly not all relevant in the Flatpak context (especially the systemd ones) - would need to analyze both the included subpackages and the content of those security updates to figure out what are the relevant CVEs.

(This went a long time without a rebuild - in general, we'll plan on much more frequent rebuilds of the runtime to pick up security fixes.)

OK, thanks for the clarification. fyi: CVE-2019-8308 is in Flatpak itself, not in the Fedora Flatpak runtimes so there was no need to bring it up here. Sorry for the noise!

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Content Type
Flatpak
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
medium
Karma
+1
stable threshold: 1
unstable threshold: -3
Autopush
Enabled
Dates
submitted 5 months ago
in testing 5 months ago
in stable 5 months ago

Automated Test Results