mirror/flatpak
1
0
Fork 0
mirror of https://github.com/flatpak/flatpak.git synced 2026-04-06 16:15:21 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
1.12.8
flatpak/app
History
Ryan Gonzalez 01ed14ced4 Ensure special characters in permissions and metadata are escaped 
This prevents someone from placing special characters in order to
manipulate the appearance of the permissions list.

CVE-2023-28101, GHSA-h43h-fwqx-mpp8

Signed-off-by: Ryan Gonzalez <ryan.gonzalez@collabora.com>
2023-03-16 09:55:31 +00:00
..
flatpak-builtins-build-bundle.c
Remove last uses of flatpak_decompose_ref()
2020-11-10 14:32:13 +01:00
flatpak-builtins-build-commit-from.c
build-commit-from: Remove leftover spew
2020-11-13 10:32:19 +01:00
flatpak-builtins-build-export.c
build-export: Support --subset to add subsets
2020-11-13 10:32:19 +01:00
flatpak-builtins-build-finish.c
decompose: Convert more FlatpakDir functions to use FlatpakDecomposed
2020-11-10 14:32:13 +01:00
flatpak-builtins-build-import-bundle.c
decompose: Use FlatpakDecomposed for bundles
2020-11-10 14:32:13 +01:00
flatpak-builtins-build-init.c
build-init: Use SDK arch for SDK extensions...
2022-01-11 11:51:02 +01:00
flatpak-builtins-build-sign.c
utils: Allow passing sizes to more utils
2020-10-29 15:30:35 +01:00
flatpak-builtins-build-update-repo.c
build-update-repo: Don't try to generate deltas of unknown refs
2022-01-04 10:44:37 -08:00
flatpak-builtins-build.c
run: Create a shared XDG_RUNTIME_DIR for each app-ID
2021-04-16 09:13:18 +02:00
flatpak-builtins-config.c
Revert "config: Support setting sideload-repos option"
2020-03-26 10:10:45 +01:00
flatpak-builtins-create-usb.c
create-usb: Skip copying extra-data flatpaks
2021-03-23 15:16:17 -07:00
flatpak-builtins-document-export.c
Fix several memory leaks
2021-05-04 10:23:13 +02:00
flatpak-builtins-document-info.c
common: Rename all generated files to *-dbus-generated.[ch]
2018-05-24 11:59:52 +00:00
flatpak-builtins-document-list.c
app: Use autocleanup for FlatpakTablePrinter
2021-04-16 14:51:47 +02:00
flatpak-builtins-document-unexport.c
common: Rename all generated files to *-dbus-generated.[ch]
2018-05-24 11:59:52 +00:00
flatpak-builtins-enter.c
enter: Make it clearer that rest_argv_start always gets initialized
2021-04-19 09:09:04 +02:00
flatpak-builtins-history.c
history: Fix exclusion of temp repos
2022-02-08 10:12:24 -08:00
flatpak-builtins-info.c
Ensure special characters in permissions and metadata are escaped
2023-03-16 09:55:31 +00:00
flatpak-builtins-install.c
install: Avoid a superfluous prompt to choose the only remote
2021-08-24 13:57:04 +01:00
flatpak-builtins-kill.c
app: Handle NULL flatpak_instance_get_app()
2020-12-21 09:11:08 +01:00
flatpak-builtins-list.c
list: Tweak logic for excluding Locale/Debug extensions
2022-01-11 11:51:02 +01:00
flatpak-builtins-make-current.c
decomposed: Convert flatpak_dir_read/set_active()
2020-11-10 14:32:13 +01:00
flatpak-builtins-mask.c
app: Make mask and pin output more machine readable
2020-08-31 16:29:03 +02:00
flatpak-builtins-override.c
decompose: Use FlatpakDecomposed for bundles
2020-11-10 14:32:13 +01:00
flatpak-builtins-permission-list.c
app: Use autocleanup for FlatpakTablePrinter
2021-04-16 14:51:47 +02:00
flatpak-builtins-permission-remove.c
Use DeletePermission when available
2019-11-22 16:35:43 +01:00
flatpak-builtins-permission-reset.c
completion: Fix some leaks
2019-12-19 17:09:47 +01:00
flatpak-builtins-permission-set.c
app: Don't shadow global variables
2020-03-16 09:29:31 +01:00
flatpak-builtins-permission-show.c
app: Use autocleanup for FlatpakTablePrinter
2021-04-16 14:51:47 +02:00
flatpak-builtins-pin.c
app: Make mask and pin output more machine readable
2020-08-31 16:29:03 +02:00
flatpak-builtins-ps.c
app: Use autocleanup for FlatpakTablePrinter
2021-04-16 14:51:47 +02:00
flatpak-builtins-remote-add.c
Allow configuring the subset
2020-11-13 10:32:19 +01:00
flatpak-builtins-remote-delete.c
decompose: Convert more FlatpakDir functions to use FlatpakDecomposed
2020-11-10 14:32:13 +01:00
flatpak-builtins-remote-info.c
Ensure special characters in permissions and metadata are escaped
2023-03-16 09:55:31 +00:00
flatpak-builtins-remote-list.c
remote-list: Check for unlikely libostree error
2021-05-04 10:23:13 +02:00
flatpak-builtins-remote-ls.c
app: Use autocleanup for FlatpakTablePrinter
2021-04-16 14:51:47 +02:00
flatpak-builtins-remote-modify.c
Allow configuring the subset
2020-11-13 10:32:19 +01:00
flatpak-builtins-repair.c
repair: Properly mark invalid commits as partial
2022-01-11 11:51:30 +01:00
flatpak-builtins-repo.c
app: Use autocleanup for FlatpakTablePrinter
2021-04-16 14:51:47 +02:00
flatpak-builtins-run.c
run: Fix session-bus and a11y-bus args being incorrect
2022-01-04 13:02:51 -06:00
flatpak-builtins-search.c
Don't rely on AS_BUNDLE_KIND_FLATPAK existing
2022-01-13 09:35:05 +00:00
flatpak-builtins-uninstall.c
decompose: Use FlatpakDecomposed for bundles
2020-11-10 14:32:13 +01:00
flatpak-builtins-update.c
decomposed: Remove _decomposed prefix on functions
2020-11-10 14:32:13 +01:00
flatpak-builtins-utils.c
install: Avoid a superfluous prompt to choose the only remote
2021-08-24 13:57:04 +01:00
flatpak-builtins-utils.h
install: Avoid a superfluous prompt to choose the only remote
2021-08-24 13:57:04 +01:00
flatpak-builtins.h
app: Make ALL_DIRS and STANDARD_DIRS imply OPTIONAL_REPO
2022-03-10 09:10:12 -08:00
flatpak-cli-transaction.c
Ensure special characters in permissions and metadata are escaped
2023-03-16 09:55:31 +00:00
flatpak-cli-transaction.h
app: Don't show arch column if it's not interesting
2019-05-30 12:12:12 +00:00
flatpak-complete.c
Add missing G_GNUC_PRINTF attributes
2021-05-25 10:33:18 +02:00
flatpak-complete.h
Add missing G_GNUC_PRINTF attributes
2021-05-25 10:33:18 +02:00
flatpak-main.c
app: Make ALL_DIRS and STANDARD_DIRS imply OPTIONAL_REPO
2022-03-10 09:10:12 -08:00
flatpak-polkit-agent-text-listener.c
polkit: Ignore deprecations
2019-01-11 22:34:24 +00:00
flatpak-polkit-agent-text-listener.h
Add our own polkit listener implementation
2018-12-06 15:01:14 +00:00
flatpak-quiet-transaction.c
app: Fix behavior when installing end-of-life-rebased ref
2022-01-11 11:51:02 +01:00
flatpak-quiet-transaction.h
Run uncrustify
2019-02-25 18:12:30 +00:00
flatpak-table-printer.c
Add missing G_GNUC_PRINTF attributes
2021-05-25 10:33:18 +02:00
flatpak-table-printer.h
Add missing G_GNUC_PRINTF attributes
2021-05-25 10:33:18 +02:00
Makefile.am.inc
app: Use bison to build parse-datetime.y
2021-03-10 10:33:51 +01:00
parse-datetime.h
app/parse-datetime.h: Add #pragma once
2020-03-16 09:29:31 +01:00
parse-datetime.y
app: Fix deprecation warning
2021-03-10 10:33:51 +01:00