lp:ubuntu/trusty-security/apt

Created by Ubuntu Package Importer on 2014-06-17 and last modified on 2014-10-08
Get this branch:
bzr branch lp:ubuntu/trusty-security/apt
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Mature

Recent revisions

227. By Michael Vogt on 2014-10-08

* SECURITY UPDATE:
    - cmdline/apt-get.cc: fix insecure tempfile handling in
      apt-get changelog (CVE-2014-7206). Thanks to Guillem Jover

226. By Michael Vogt on 2014-09-23

* SECURITY UPDATE:
  - fix potential buffer overflow, thanks to the
    Google Security Team (CVE-2014-6273)
* Fix regression from the previous upload when file:/// sources
  are used and those are on a different partition than
  the apt state directory
* Fix regression when Dir::state::lists is set to a relative path
* Fix regression when cdrom: sources got rewriten by apt-cdrom add

225. By Michael Vogt on 2014-09-15

* SECURITY UPDATE:
  - incorrect invalidating of unauthenticated data (CVE-2014-0488)
  - incorect verification of 304 reply (CVE-2014-0487)
  - incorrect verification of Acquire::Gzip indexes (CVE-2014-0489)

224. By Michael Vogt on 2014-06-12

* SECURITY UPDATE: incorrect apt-get source validation (LP: #1329274)
  - warn if not authenticated in apt-private/private-download.*,
    cmdline/apt-get.cc, added regression test to
    test/integration/test-apt-get-source-authenticated.
  - CVE-2014-0478

223. By Michael Vogt on 2014-04-10

fix symlink of etc/apt/apt.conf.d/01autoremove when runnning in
the auto-pkg-test environment

222. By Michael Vogt on 2014-04-01

merge with the debian/sid 1.0.1 version
(LP: #1302033)

221. By Michael Vogt on 2014-04-07

[ Julian Andres Klode ]
* Version the Breaks/Replaces for sun-java{5,6}-jdk
  (LP: #1302736)
* Add versioned openjdk-6-jdk breaks

220. By Michael Vogt on 2014-04-04

Cherry pick fixes from the apt 1.0 branch:

[ Michael Vogt ]
* add sun-java{5,6}-jdk to breaks/replaces as that provided a "apt"
  binary as well

[ David Kalnischkies ]
* ensure proper teardown in dpkg error cases (Closes: 738969)
* use the pretty fullname of a pkg as download desciption
* cmdline parsing: apt-config is not apt-cdrom
* do not configure already unpacked packages needlessly (Closes: 740843)
  LP: #1286161

[ Julian Andres Klode ]
* Promote xz-utils from apt Suggests to libapt-pkg Depends

219. By Michael Vogt on 2014-04-02

cherry pick git commit b68ce88357daf36 to fix crash in
apt-extracttemplates (LP: #1288718)

218. By Martin Pitt on 2014-02-24

* debian/tests/control: Add missing build-essential, fakeroot, and wget test
  dependencies.
* debian/tests/run-tests: Pin locale to C to avoid test failures in other
  locales.

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/utopic/apt
This branch contains Public information 
Everyone can see this information.

Subscribers