flatpak 1.15.10 Dependencies: * In distributions that compile Flatpak to use a separate bubblewrap (bwrap) executable, version 0.10.0 is required. This version adds a new feature which is required by the security fix in this release. Security fixes: * Don't follow symbolic links when mounting persistent directories (--persist option). This prevents a sandbox escape where a malicious or compromised app could edit the symlink to point to a directory that the app should not have been allowed to read or write. (CVE-2024-42472, GHSA-7hgv-f2j8-xw87) Documentation: * Mark the 1.12.x and 1.10.x branches as end-of-life (#5352) Other bug fixes: * Fix several memory leaks (#5883, #5884) Internal changes: * Record a log file when running build-time tests with AddressSanitizer (#5884) * Add initial suppressions file for AddressSanitizer (#5884) Git-EVTag-v0-SHA512: 485fe6c4478c13ef3b36592ce207f93932aaacef5769ecca628dfc9e3a34baaea6d010b1987788d85343aa5ff2138353a45041a63db634b66776c6cb1610f95a