mirror/flatpak
1
0
Fork 0
mirror of https://github.com/flatpak/flatpak.git synced 2026-04-02 14:27:00 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
c9cbdf5179ee964bd2b26bc10527d160356f50b1
flatpak/tests
History
Simon McVittie 8e63de9a7d run: Prevent TIOCLINUX ioctl, the same as TIOCSTI 
The TIOCLINUX ioctl is only available on Linux virtual consoles such as
/dev/tty1. It has several Linux-specific functions, one of which is a
copy/paste operation which can be used for attacks similar to TIOCSTI.

This vulnerability does not affect typical graphical terminal emulators
such as xterm, gnome-terminal and Konsole, and Flatpak is primarily
designed to be run from a Wayland or X11 graphical environment, so this
is relatively unlikely to be a practical problem.

CVE-2023-28100, GHSA-7qpw-3vjv-xrqp

Resolves: https://github.com/flatpak/flatpak/security/advisories/GHSA-7qpw-3vjv-xrqp
Signed-off-by: Simon McVittie <smcv@debian.org>
2023-03-16 09:54:14 +00:00
..
installed-services
Add a Meson build system
2022-10-24 16:12:14 +01:00
services
Add a Meson build system
2022-10-24 16:12:14 +01:00
share/xdg-desktop-portal/portals
Add a Meson build system
2022-10-24 16:12:14 +01:00
test-keyring
meson: Depend on Meson 0.50.0
2022-10-24 16:12:14 +01:00
test-keyring2
meson: Depend on Meson 0.50.0
2022-10-24 16:12:14 +01:00
test-matrix
Add a Meson build system
2022-10-24 16:12:14 +01:00
can-use-fuse.c
Add a vim modeline and .editorconfig
2022-08-22 19:48:10 -07:00
can-use-fuse.h
tests: Disable revokefs if FUSE doesn't work
2021-02-09 09:33:57 +01:00
expand-test-matrix.sh
Add a Meson build system
2022-10-24 16:12:14 +01:00
flatpak.supp
tests: Add valgrind suppression for ostreedev/ostree#2592
2022-08-16 13:27:04 +02:00
glib.supp
tests: Add new glib suppression
2019-12-17 14:55:13 +01:00
hold-lock.c
Add a vim modeline and .editorconfig
2022-08-22 19:48:10 -07:00
http-utils-test-server.py
tests: Use regular HTTPServer, not ThreadingHTTPServer
2019-10-09 14:25:44 +02:00
httpcache.c
http utils: Make a generic FlatpakHttpSession instead of SoupSession
2022-06-16 13:49:45 +02:00
libpreload.c
Add a vim modeline and .editorconfig
2022-08-22 19:48:10 -07:00
libtest.sh
tests: Skip test-history.sh without libsystemd
2022-06-24 15:11:41 -07:00
list-unused.c
transaction: inject eol status to flatpak_dir_list_unused_refs()
2020-10-08 09:14:51 +02:00
make-multi-collection-id-repo.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
make-runtime-repos
tests: Factor out generation of test runtime into a script
2022-05-03 13:54:23 +02:00
make-test-app.sh
Ensure special characters in permissions and metadata are escaped
2023-03-16 09:54:14 +00:00
make-test-runtime.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
Makefile-test-matrix.am.inc
tests/update-test-matrix: Move into a standalone script
2022-05-03 13:54:23 +02:00
Makefile.am.inc
Add a Meson build system
2022-10-24 16:12:14 +01:00
meson.build
meson: Depend on Meson 0.50.0
2022-10-24 16:12:14 +01:00
mock-flatpak.c
daemons, etc.: Use g_info() for messages that are enabled by -v
2022-12-15 16:45:35 +00:00
oci-registry-client.py
tests: Convert all tests to python3
2019-10-07 11:38:24 +02:00
oci-registry-server.py
Tests: Support HEAD requests in oci-registry-server
2020-05-04 16:32:22 +02:00
org.flatpak.Authenticator.test.service.in
tests: Add a test authenticator
2019-11-26 16:37:01 +01:00
org.freedesktop.impl.portal.desktop.test.service.in
tests: Add simple testing portal backend and wire it up to the tests
2019-10-02 14:57:11 +02:00
org.test.Hello.png
Add appdata to test apps
2016-02-25 19:03:09 +01:00
package_version.txt.in
Add a Meson build system
2022-10-24 16:12:14 +01:00
session.conf.in
Add some missing files from the tests
2016-05-02 10:46:51 +02:00
tap.test.in
Add a Meson build system
2022-10-24 16:12:14 +01:00
test-auth.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
test-authenticator.c
common: Make flatpak_debug2() use the same domain as g_debug()
2022-12-15 16:45:35 +00:00
test-basic.sh
test-basic: Don't fail if head -2 exits before flatpak does
2021-04-12 11:07:10 +02:00
test-build-update-repo.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
test-bundle.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
test-completion.sh
run: Add option to share /dev/shm between instances of an app-ID
2021-04-16 08:57:20 +02:00
test-config.sh
tests: Add and use "ok" helper
2020-03-20 15:37:10 +01:00
test-context.c
Reject paths given to --filesystem/--persist with special characters
2023-03-16 09:54:14 +00:00
test-default-remotes.sh
tests: Add and use "ok" helper
2020-03-20 15:37:10 +01:00
test-exports.c
exports: Test that a symlink to the root directory is rejected
2023-01-12 15:13:34 +00:00
test-extensions.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
test-history.sh
tests: Skip test-history.sh without libsystemd
2022-06-24 15:11:41 -07:00
test-http-utils.sh
flatpak-http: Restructure the soup http implementation
2022-06-16 13:49:45 +02:00
test-info.sh
Ensure special characters in permissions and metadata are escaped
2023-03-16 09:54:14 +00:00
test-instance.c
Add a vim modeline and .editorconfig
2022-08-22 19:48:10 -07:00
test-metadata-validation.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
test-oci-registry.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
test-oci.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
test-override.sh
test-override: Exercise --nofilesystem=host:reset
2022-01-18 15:30:12 +00:00
test-portal-impl.c
daemons, etc.: Use g_info() for messages that are enabled by -v
2022-12-15 16:45:35 +00:00
test-portal.c
daemons, etc.: Use g_info() for messages that are enabled by -v
2022-12-15 16:45:35 +00:00
test-prune.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
test-repair.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
test-repo.sh
transaction: Ignore uninstall operations for no deploy
2023-02-18 14:48:47 +00:00
test-run.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
test-seccomp.sh
run: Prevent TIOCLINUX ioctl, the same as TIOCSTI
2023-03-16 09:54:14 +00:00
test-sideload.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
test-subset.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
test-summaries.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
test-unused.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
test-update-portal.c
test-update-portal: Fix warn_unused_result warning
2021-10-27 10:58:38 +01:00
test-update-portal.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
test-update-remote-configuration.sh
tests: Avoid printing arbitrary text to stdout
2022-05-03 13:54:23 +02:00
test-webserver.sh
tests: Redo httpd server setup
2019-10-09 14:25:44 +02:00
test-wrapper.sh
tests: Test stuff with the old (non-indexed) summary format too
2020-10-29 15:30:35 +01:00
test.filter
tests: Add tests for client-side filtering
2019-05-06 13:58:58 +00:00
test.portal.in
tests: Add simple testing portal backend and wire it up to the tests
2019-10-02 14:57:11 +02:00
testcommon.c
Reject paths given to --filesystem/--persist with special characters
2023-03-16 09:54:14 +00:00
testlib.c
Add a vim modeline and .editorconfig
2022-08-22 19:48:10 -07:00
testlib.h
testlib: Remove local backport of g_assert_no_errno()
2022-10-24 16:10:49 +01:00
testlibrary.c
transaction: Ignore uninstall operations for no deploy
2023-02-18 14:48:47 +00:00
try-syscall.c
run: Prevent TIOCLINUX ioctl, the same as TIOCSTI
2023-03-16 09:54:14 +00:00
update-test-matrix
Add a Meson build system
2022-10-24 16:12:14 +01:00
web-server.py
tests: web-server: fix an issue with the web server cache
2021-03-11 13:31:17 +01:00