[ubuntu/focal-proposed] python-apt 1.9.4 (Accepted)
Julian Andres Klode
julian.klode at canonical.com
Mon Jan 20 16:43:48 UTC 2020
python-apt (1.9.4) experimental; urgency=medium
* SECURITY UPDATE: Check that repository is trusted before downloading
files from it (LP: #1858973)
- apt/cache.py: Add checks to fetch_archives() and commit()
- apt/package.py: Add checks to fetch_binary() and fetch_source()
- CVE-2019-15796
* To work around the new checks, the parameter allow_unauthenticated=True
can be passed to the functions. It defaults to the value of the
APT::Get::AllowUnauthenticated option.
- Bump Breaks aptdaemon (<< 1.1.1+bzr982-0ubuntu21.2), as it will have
to set that parameter after having done validation.
* Revert "apt.Cache: cache apt.package.Origin objects by id"
* InstallProgress: Move set_inheritable into if pid == 0
Date: 2020-01-20 16:28:11.468372+00:00
Signed-By: Julian Andres Klode <julian.klode at canonical.com>
https://launchpad.net/ubuntu/+source/python-apt/1.9.4
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list