[ubuntu/saucy-proposed] apt 0.9.9.1~ubuntu1 (Accepted)
Michael Vogt
michael.vogt at ubuntu.com
Wed Jul 10 19:00:14 UTC 2013
apt (0.9.9.1~ubuntu1) saucy; urgency=low
* merged from the debian/sid branch:
- debian/gbp.conf: change build branch to ubuntu/master
- use ubuntu keyring and ubuntu archive keyring in apt-key
- run update-apt-xapian-index in apt.cron
- run apt-key net-update in cron.daily
- different example sources.list
- APT::pkgPackageManager::MaxLoopCount set to 5000
- apport pkgfailure handling
- ubuntu changelog download handling
- patch for apt cross-building, see http://bugs.debian.org/666772
- debian/apt.auto-removal.sh
+ make kernels auto-removable
apt (0.9.9.1) UNRELEASED; urgency=low
* debian/rules:
- call dh_clean in clean (closes: #714980)
apt (0.9.9) unstable; urgency=low
[ Michael Vogt ]
* improve debug output for the Debug::pkgProblemResolver and
Debug::pkgDepCache::AutoInstall
* improve apt-cdrom output when no CD-ROM can be auto-detected
* document --no-auto-detect in apt-cdrom
[ David Kalnischkies ]
* build the en manpages in subdirectory doc/en
* remove -ldl from cdrom and -lutil from apt-get linkage
* rewrite pkgOrderList::DepRemove to stop incorrect immediate setting
(Closes: 645713)
* prefer Essentials over Removals in ordering score
* fix priority sorting by prefering higher in MarkInstall
* try all providers in order if uninstallable in MarkInstall
* do unpacks before configures in SmartConfigure (Closes: #707578)
* fix support for multiple patterns in apt-cache search (Closes: #691453)
* set Fail flag in FileFd on all errors consistently
* don't explicitly init ExtractTar InFd with invalid fd
* OpenDescriptor should autoclose fd always on error (Closes: #704608)
* fail in CopyFile if the FileFds have error flag set
* ensure state-dir exists before coyping cdrom files
* fix file location for configure-index.gz in apt.conf(5) (Closes: #711921)
* handle missing "Description" in apt-cache show (Closes: #712435)
* try defaults if auto-detection failed in apt-cdrom (Closes: #712433)
* support \n and \r\n line endings in ReadMessages
* do not redownload unchanged InRelease files
* trigger NODATA error for invalid InRelease files (Closes: #712486)
apt (0.9.8.2) unstable; urgency=low
[ Programs translations ]
* French translation : typo fix. Closes: #677272
[ Guillem Jover ]
* Update Vcs fields (Closes: #708562)
[ Michael Vogt ]
* buildlib/apti18n.h.in:
- fix build failure when building without NLS (closes: #671587)
[ Gregoire Menuel ]
* Fix double free (closes: #711045)
[ Raphael Geissert ]
* Fix crash when the "mirror" method does not find any entry
(closes: #699303)
[ Johan Kiviniemi ]
* cmdline/apt-key:
- Create new keyrings with mode 0644 instead of 0600.
- Accept a nonexistent --keyring file with the adv subcommand as well.
apt (0.9.8.1) unstable; urgency=low
[ David Kalnischkies ]
* apt-pkg/indexcopy.cc:
- non-inline RunGPGV methods to restore ABI compatibility with previous
versions to fix partial upgrades (Closes: #707771)
[ Michael Vogt ]
* moved source to http://git.debian.org/apt/apt.git
* updated gbp.conf to match what bzr-buildpackage is doing
* remove .bzr-buildpackage/default.conf (superseeded by gbp.conf)
apt (0.9.8) unstable; urgency=low
[ Ludovico Cavedon ]
* properly handle if-modfied-since with libcurl/https
(closes: #705648)
[ Andreas Beckman ]
* apt-pkg/algorithms.cc:
- Do not propagate negative scores from rdepends. Propagating the absolute
value of a negative score may boost obsolete packages and keep them
installed instead of installing their successors. (Closes: #699759)
[ Michael Vogt ]
* apt-pkg/sourcelist.cc:
- fix segfault when a hostname contains a [, thanks to
Tzafrir Cohen (closes: #704653)
* debian/control:
- replace manpages-it (closes: #704723)
[ David Kalnischkies ]
* various simple changes to fix cppcheck warnings
* apt-pkg/pkgcachegen.cc:
- do not store the MD5Sum for every description language variant as
it will be the same for all so it can be shared to save cache space
- handle language tags for descriptions are unique strings to be shared
- factor version string creation out of NewDepends, so we can easily reuse
version strings e.g. for implicit multi-arch dependencies
- equal comparisions are used mostly in same-source relations,
so use this to try to reuse some version strings
- sort group and package names in the hashtable on insert
- share version strings between same versions (of different architectures)
to save some space and allow quick comparisions later on
* apt-pkg/pkgcache.cc:
- assume sorted hashtable entries for groups/packages
* apt-pkg/cacheiterators.h:
- provide DepIterator::IsSatisfied as a nicer shorthand for DepCheck
* apt-pkg/deb/debversion.cc:
- add a string-equal shortcut for equal version comparisions
[ Marc Deslauriers ]
* make apt-ftparchive generate missing deb-src hashes (LP: #1078697)
[ Yaroslav Halchenko ]
* Fix English spelling error in a message ('A error'). Unfuzzy
translations. Closes: #705087
[ Programs translations ]
* French translation completed (Christian Perrier)
[ Manpages translations ]
* French translation completed (Christian Perrier)
[ Daniel Hartwig ]
* apt-pkg/contrib/strutl.cc:
- include port in shortened URIs (e.g. with apt-cache policy, progress
display) thanks to James McCoy (Closes: #154868, #322074)
- percent-encode username and password when writing URIs
* methods/http.cc:
- properly escape IP-literals (e.g. IPv6 address) when building
Host headers and URIs (Closes: #620344)
* methods/https.cc:
- use https_proxy environment variable if present, falling back to
http_proxy otherwise
- use authentication credentials from proxy URI
(Closes: #651640, LP: #1087512)
- environment variables do not override an explicit no proxy
directive ("DIRECT") in apt.conf
- disregard all_proxy environment variable, like other methods
apt (0.9.7.9~exp3) experimental; urgency=low
[ Michael Vogt ]
* apt-pkg/sourcelist.cc:
- fix segfault when a hostname contains a [, thanks to
Tzafrir Cohen (closes: #704653)
* debian/control:
- replace manpages-it (closes: #704723)
[ David Kalnischkies ]
* various simple changes to fix cppcheck warnings
* apt-pkg/pkgcachegen.cc:
- do not store the MD5Sum for every description language variant as
it will be the same for all so it can be shared to save cache space
- handle language tags for descriptions are unique strings to be shared
- factor version string creation out of NewDepends, so we can easily reuse
version strings e.g. for implicit multi-arch dependencies
- equal comparisions are used mostly in same-source relations,
so use this to try to reuse some version strings
- sort group and package names in the hashtable on insert
- share version strings between same versions (of different architectures)
to save some space and allow quick comparisions later on
* apt-pkg/pkgcache.cc:
- assume sorted hashtable entries for groups/packages
* apt-pkg/cacheiterators.h:
- provide DepIterator::IsSatisfied as a nicer shorthand for DepCheck
* apt-pkg/deb/debversion.cc:
- add a string-equal shortcut for equal version comparisions
[ Marc Deslauriers ]
* make apt-ftparchive generate missing deb-src hashes (LP: #1078697)
[ Yaroslav Halchenko ]
* Fix English spelling error in a message ('A error'). Unfuzzy
translations. Closes: #705087
[ Programs translations ]
* French translation completed (Christian Perrier)
[ Manpages translations ]
* French translation completed (Christian Perrier)
[ Daniel Hartwig ]
* apt-pkg/contrib/strutl.cc:
- include port in shortened URIs (e.g. with apt-cache policy, progress
display) thanks to James McCoy (Closes: #154868, #322074)
- percent-encode username and password when writing URIs
* methods/http.cc:
- properly escape IP-literals (e.g. IPv6 address) when building
Host headers and URIs (Closes: #620344)
* methods/https.cc:
- use https_proxy environment variable if present, falling back to
http_proxy otherwise
- use authentication credentials from proxy URI
(Closes: #651640, LP: #1087512)
- environment variables do not override an explicit no proxy
directive ("DIRECT") in apt.conf
- disregard all_proxy environment variable, like other methods
apt (0.9.7.9~exp2) experimental; urgency=low
[ Programs translations ]
* Update all PO files and apt-all.pot
* French translation completed (Christian Perrier)
[ Daniel Hartwig ]
* cmdline/apt-get.cc:
- do not have space between "-a" and option when cross building
(closes: #703792)
* test/integration/test-apt-get-download:
- fix test now that #1098752 is fixed
* po/{ca,cs,ru}.po:
- fix merge artifact
[ David Kalnischkies ]
* apt-pkg/indexcopy.cc:
- rename RunGPGV to ExecGPGV and move it to apt-pkg/contrib/gpgv.cc
* apt-pkg/contrib/gpgv.cc:
- ExecGPGV is a method which should never return, so mark it as such
and fix the inconsistency of returning in error cases
- don't close stdout/stderr if it is also the statusfd
- if ExecGPGV deals with a clear-signed file it will split this file
into data and signatures, pass it to gpgv for verification
- add method to open (maybe) clearsigned files transparently
* apt-pkg/acquire-item.cc:
- keep the last good InRelease file around just as we do it with
Release.gpg in case the new one we download isn't good for us
* apt-pkg/deb/debmetaindex.cc:
- reenable InRelease by default
* ftparchive/writer.cc,
apt-pkg/deb/debindexfile.cc,
apt-pkg/deb/deblistparser.cc:
- use OpenMaybeClearSignedFile to be free from detecting and
skipping clearsigning metadata in dsc and Release files
[ Michael Vogt ]
* add regression test for CVE-2013-1051
* implement GPGSplit() based on the idea from Ansgar Burchardt
(many thanks!)
* methods/connect.cc:
- use Errno() instead of strerror(), thanks to David Kalnischk
* doc/apt.conf.5.xml:
- document Acquire::ForceIPv{4,6}
apt (0.9.7.9~exp1) experimental; urgency=low
[ Niels Thykier ]
* test/libapt/assert.h, test/libapt/run-tests:
- exit with status 1 on test failure
[ Daniel Hartwig ]
* test/integration/framework:
- continue after test failure but preserve exit status
[ Programs translation updates ]
* Turkish (Mert Dirik). Closes: #703526
[ Colin Watson ]
* methods/connect.cc:
- provide useful error message in case of EAI_SYSTEM
(closes: #703603)
[ Michael Vogt ]
* add new config options "Acquire::ForceIPv4" and
"Acquire::ForceIPv6" to allow focing one or the other
(closes: #611891)
* lp:~mvo/apt/fix-tagfile-hash:
- fix false positives in pkgTagSection.Exists(), thanks to
Niels Thykier for the testcase (closes: #703240)
- this will require rebuilds of the clients as this used to
be a inline function
apt (0.9.7.8) unstable; urgency=criticial
* SECURITY UPDATE: InRelease verification bypass
- CVE-2013-1051
[ David Kalnischk ]
* apt-pkg/deb/debmetaindex.cc,
test/integration/test-bug-595691-empty-and-broken-archive-files,
test/integration/test-releasefile-verification:
- disable InRelease downloading until the verification issue is
fixed, thanks to Ansgar Burchardt for finding the flaw
apt (0.9.7.8~exp2) experimental; urgency=low
* include two missing patches to really fix bug #696225, thanks to
Guillem Jover
* ensure sha512 is really used when available, thanks to Tyler Hicks
(LP: #1098752)
apt (0.9.7.8~exp1) experimental; urgency=low
[ Manpages translation updates ]
* Italian (Beatrice Torracca). Closes: #696601
[ Programs translation updates ]
* Japanese (Kenshi Muto). Closes: #699783
[ Michael Vogt ]
* fix pkgProblemResolver::Scores, thanks to Paul Wise.
Closes: #697577
* fix missing translated apt.8 manpages, thanks to Helge Kreutzmann
for the report. Closes: #696923
* apt-pkg/contrib/progress.cc:
- Make "..." translatable to fix inconsistencies in the output
of e.g. apt-get update. While this adds new translatable strings,
not having translations for them will not break anything.
Thanks to Guillem Jover. Closes: #696225
* debian/apt.cron.daily:
- when reading from /dev/urandom, use less entropy and fix a rare
bug when the random number chksum is less than 1000.
Closes: #695285
* methods/https.cc:
- reuse connection in https, thanks to Thomas Bushnell, BSG for the
patch. LP: #1087543, Closes: #695359
- add missing curl_easy_cleanup()
* methods/http.cc:
- quote spaces in filenames to ensure as the http method is also
(potentially) used for non deb,dsc content that may contain
spaces, thanks to Daniel Hartwig and Thomas Bushnell
(LP: #1086997)
- quote plus in filenames to work around a bug in the S3 server
(LP: #1003633)
* apt-pkg/indexrecords.cc:
- support '\r' in the Release file
[ David Kalnischkies ]
* apt-pkg/depcache.cc:
- prefer to install packages which have an already installed M-A:same
sibling while choosing providers (LP: #1130419)
Date: Wed, 10 Jul 2013 17:03:52 +0200
Changed-By: Michael Vogt <michael.vogt at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/saucy/+source/apt/0.9.9.1~ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Wed, 10 Jul 2013 17:03:52 +0200
Source: apt
Binary: apt libapt-pkg4.12 libapt-inst1.5 apt-doc libapt-pkg-dev libapt-pkg-doc apt-utils apt-transport-https
Architecture: source
Version: 0.9.9.1~ubuntu1
Distribution: saucy
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Michael Vogt <michael.vogt at ubuntu.com>
Description:
apt - commandline package manager
apt-doc - documentation for APT
apt-transport-https - https download transport for APT
apt-utils - package managment related utility programs
libapt-inst1.5 - deb package format runtime library
libapt-pkg-dev - development files for APT's libapt-pkg and libapt-inst
libapt-pkg-doc - documentation for APT development
libapt-pkg4.12 - package managment runtime library
Closes: 154868 322074 611891 620344 645713 651640 671587 677272 691453 695285 695359 696225 696601 696923 697577 699303 699759 699783 703240 703526 703603 703792 704608 704653 704723 705087 705648 707578 707771 708562 711045 711921 712433 712435 712486 714980
Launchpad-Bugs-Fixed: 1003633 1078697 1086997 1087512 1087543 1098752 1130419
Changes:
apt (0.9.9.1~ubuntu1) saucy; urgency=low
.
* merged from the debian/sid branch:
- debian/gbp.conf: change build branch to ubuntu/master
- use ubuntu keyring and ubuntu archive keyring in apt-key
- run update-apt-xapian-index in apt.cron
- run apt-key net-update in cron.daily
- different example sources.list
- APT::pkgPackageManager::MaxLoopCount set to 5000
- apport pkgfailure handling
- ubuntu changelog download handling
- patch for apt cross-building, see http://bugs.debian.org/666772
- debian/apt.auto-removal.sh
+ make kernels auto-removable
.
apt (0.9.9.1) UNRELEASED; urgency=low
.
* debian/rules:
- call dh_clean in clean (closes: #714980)
.
apt (0.9.9) unstable; urgency=low
.
[ Michael Vogt ]
* improve debug output for the Debug::pkgProblemResolver and
Debug::pkgDepCache::AutoInstall
* improve apt-cdrom output when no CD-ROM can be auto-detected
* document --no-auto-detect in apt-cdrom
.
[ David Kalnischkies ]
* build the en manpages in subdirectory doc/en
* remove -ldl from cdrom and -lutil from apt-get linkage
* rewrite pkgOrderList::DepRemove to stop incorrect immediate setting
(Closes: 645713)
* prefer Essentials over Removals in ordering score
* fix priority sorting by prefering higher in MarkInstall
* try all providers in order if uninstallable in MarkInstall
* do unpacks before configures in SmartConfigure (Closes: #707578)
* fix support for multiple patterns in apt-cache search (Closes: #691453)
* set Fail flag in FileFd on all errors consistently
* don't explicitly init ExtractTar InFd with invalid fd
* OpenDescriptor should autoclose fd always on error (Closes: #704608)
* fail in CopyFile if the FileFds have error flag set
* ensure state-dir exists before coyping cdrom files
* fix file location for configure-index.gz in apt.conf(5) (Closes: #711921)
* handle missing "Description" in apt-cache show (Closes: #712435)
* try defaults if auto-detection failed in apt-cdrom (Closes: #712433)
* support \n and \r\n line endings in ReadMessages
* do not redownload unchanged InRelease files
* trigger NODATA error for invalid InRelease files (Closes: #712486)
.
apt (0.9.8.2) unstable; urgency=low
.
[ Programs translations ]
* French translation : typo fix. Closes: #677272
.
[ Guillem Jover ]
* Update Vcs fields (Closes: #708562)
.
[ Michael Vogt ]
* buildlib/apti18n.h.in:
- fix build failure when building without NLS (closes: #671587)
.
[ Gregoire Menuel ]
* Fix double free (closes: #711045)
.
[ Raphael Geissert ]
* Fix crash when the "mirror" method does not find any entry
(closes: #699303)
.
[ Johan Kiviniemi ]
* cmdline/apt-key:
- Create new keyrings with mode 0644 instead of 0600.
- Accept a nonexistent --keyring file with the adv subcommand as well.
.
apt (0.9.8.1) unstable; urgency=low
.
[ David Kalnischkies ]
* apt-pkg/indexcopy.cc:
- non-inline RunGPGV methods to restore ABI compatibility with previous
versions to fix partial upgrades (Closes: #707771)
.
[ Michael Vogt ]
* moved source to http://git.debian.org/apt/apt.git
* updated gbp.conf to match what bzr-buildpackage is doing
* remove .bzr-buildpackage/default.conf (superseeded by gbp.conf)
.
apt (0.9.8) unstable; urgency=low
.
[ Ludovico Cavedon ]
* properly handle if-modfied-since with libcurl/https
(closes: #705648)
.
[ Andreas Beckman ]
* apt-pkg/algorithms.cc:
- Do not propagate negative scores from rdepends. Propagating the absolute
value of a negative score may boost obsolete packages and keep them
installed instead of installing their successors. (Closes: #699759)
.
[ Michael Vogt ]
* apt-pkg/sourcelist.cc:
- fix segfault when a hostname contains a [, thanks to
Tzafrir Cohen (closes: #704653)
* debian/control:
- replace manpages-it (closes: #704723)
.
[ David Kalnischkies ]
* various simple changes to fix cppcheck warnings
* apt-pkg/pkgcachegen.cc:
- do not store the MD5Sum for every description language variant as
it will be the same for all so it can be shared to save cache space
- handle language tags for descriptions are unique strings to be shared
- factor version string creation out of NewDepends, so we can easily reuse
version strings e.g. for implicit multi-arch dependencies
- equal comparisions are used mostly in same-source relations,
so use this to try to reuse some version strings
- sort group and package names in the hashtable on insert
- share version strings between same versions (of different architectures)
to save some space and allow quick comparisions later on
* apt-pkg/pkgcache.cc:
- assume sorted hashtable entries for groups/packages
* apt-pkg/cacheiterators.h:
- provide DepIterator::IsSatisfied as a nicer shorthand for DepCheck
* apt-pkg/deb/debversion.cc:
- add a string-equal shortcut for equal version comparisions
.
[ Marc Deslauriers ]
* make apt-ftparchive generate missing deb-src hashes (LP: #1078697)
.
[ Yaroslav Halchenko ]
* Fix English spelling error in a message ('A error'). Unfuzzy
translations. Closes: #705087
.
[ Programs translations ]
* French translation completed (Christian Perrier)
.
[ Manpages translations ]
* French translation completed (Christian Perrier)
.
[ Daniel Hartwig ]
* apt-pkg/contrib/strutl.cc:
- include port in shortened URIs (e.g. with apt-cache policy, progress
display) thanks to James McCoy (Closes: #154868, #322074)
- percent-encode username and password when writing URIs
* methods/http.cc:
- properly escape IP-literals (e.g. IPv6 address) when building
Host headers and URIs (Closes: #620344)
* methods/https.cc:
- use https_proxy environment variable if present, falling back to
http_proxy otherwise
- use authentication credentials from proxy URI
(Closes: #651640, LP: #1087512)
- environment variables do not override an explicit no proxy
directive ("DIRECT") in apt.conf
- disregard all_proxy environment variable, like other methods
.
apt (0.9.7.9~exp3) experimental; urgency=low
.
[ Michael Vogt ]
* apt-pkg/sourcelist.cc:
- fix segfault when a hostname contains a [, thanks to
Tzafrir Cohen (closes: #704653)
* debian/control:
- replace manpages-it (closes: #704723)
.
[ David Kalnischkies ]
* various simple changes to fix cppcheck warnings
* apt-pkg/pkgcachegen.cc:
- do not store the MD5Sum for every description language variant as
it will be the same for all so it can be shared to save cache space
- handle language tags for descriptions are unique strings to be shared
- factor version string creation out of NewDepends, so we can easily reuse
version strings e.g. for implicit multi-arch dependencies
- equal comparisions are used mostly in same-source relations,
so use this to try to reuse some version strings
- sort group and package names in the hashtable on insert
- share version strings between same versions (of different architectures)
to save some space and allow quick comparisions later on
* apt-pkg/pkgcache.cc:
- assume sorted hashtable entries for groups/packages
* apt-pkg/cacheiterators.h:
- provide DepIterator::IsSatisfied as a nicer shorthand for DepCheck
* apt-pkg/deb/debversion.cc:
- add a string-equal shortcut for equal version comparisions
.
[ Marc Deslauriers ]
* make apt-ftparchive generate missing deb-src hashes (LP: #1078697)
.
[ Yaroslav Halchenko ]
* Fix English spelling error in a message ('A error'). Unfuzzy
translations. Closes: #705087
.
[ Programs translations ]
* French translation completed (Christian Perrier)
.
[ Manpages translations ]
* French translation completed (Christian Perrier)
.
[ Daniel Hartwig ]
* apt-pkg/contrib/strutl.cc:
- include port in shortened URIs (e.g. with apt-cache policy, progress
display) thanks to James McCoy (Closes: #154868, #322074)
- percent-encode username and password when writing URIs
* methods/http.cc:
- properly escape IP-literals (e.g. IPv6 address) when building
Host headers and URIs (Closes: #620344)
* methods/https.cc:
- use https_proxy environment variable if present, falling back to
http_proxy otherwise
- use authentication credentials from proxy URI
(Closes: #651640, LP: #1087512)
- environment variables do not override an explicit no proxy
directive ("DIRECT") in apt.conf
- disregard all_proxy environment variable, like other methods
.
apt (0.9.7.9~exp2) experimental; urgency=low
.
[ Programs translations ]
* Update all PO files and apt-all.pot
* French translation completed (Christian Perrier)
.
[ Daniel Hartwig ]
* cmdline/apt-get.cc:
- do not have space between "-a" and option when cross building
(closes: #703792)
* test/integration/test-apt-get-download:
- fix test now that #1098752 is fixed
* po/{ca,cs,ru}.po:
- fix merge artifact
.
[ David Kalnischkies ]
* apt-pkg/indexcopy.cc:
- rename RunGPGV to ExecGPGV and move it to apt-pkg/contrib/gpgv.cc
* apt-pkg/contrib/gpgv.cc:
- ExecGPGV is a method which should never return, so mark it as such
and fix the inconsistency of returning in error cases
- don't close stdout/stderr if it is also the statusfd
- if ExecGPGV deals with a clear-signed file it will split this file
into data and signatures, pass it to gpgv for verification
- add method to open (maybe) clearsigned files transparently
* apt-pkg/acquire-item.cc:
- keep the last good InRelease file around just as we do it with
Release.gpg in case the new one we download isn't good for us
* apt-pkg/deb/debmetaindex.cc:
- reenable InRelease by default
* ftparchive/writer.cc,
apt-pkg/deb/debindexfile.cc,
apt-pkg/deb/deblistparser.cc:
- use OpenMaybeClearSignedFile to be free from detecting and
skipping clearsigning metadata in dsc and Release files
.
[ Michael Vogt ]
* add regression test for CVE-2013-1051
* implement GPGSplit() based on the idea from Ansgar Burchardt
(many thanks!)
* methods/connect.cc:
- use Errno() instead of strerror(), thanks to David Kalnischk
* doc/apt.conf.5.xml:
- document Acquire::ForceIPv{4,6}
.
apt (0.9.7.9~exp1) experimental; urgency=low
.
[ Niels Thykier ]
* test/libapt/assert.h, test/libapt/run-tests:
- exit with status 1 on test failure
.
[ Daniel Hartwig ]
* test/integration/framework:
- continue after test failure but preserve exit status
.
[ Programs translation updates ]
* Turkish (Mert Dirik). Closes: #703526
.
[ Colin Watson ]
* methods/connect.cc:
- provide useful error message in case of EAI_SYSTEM
(closes: #703603)
.
[ Michael Vogt ]
* add new config options "Acquire::ForceIPv4" and
"Acquire::ForceIPv6" to allow focing one or the other
(closes: #611891)
* lp:~mvo/apt/fix-tagfile-hash:
- fix false positives in pkgTagSection.Exists(), thanks to
Niels Thykier for the testcase (closes: #703240)
- this will require rebuilds of the clients as this used to
be a inline function
.
apt (0.9.7.8) unstable; urgency=criticial
.
* SECURITY UPDATE: InRelease verification bypass
- CVE-2013-1051
.
[ David Kalnischk ]
* apt-pkg/deb/debmetaindex.cc,
test/integration/test-bug-595691-empty-and-broken-archive-files,
test/integration/test-releasefile-verification:
- disable InRelease downloading until the verification issue is
fixed, thanks to Ansgar Burchardt for finding the flaw
.
apt (0.9.7.8~exp2) experimental; urgency=low
.
* include two missing patches to really fix bug #696225, thanks to
Guillem Jover
* ensure sha512 is really used when available, thanks to Tyler Hicks
(LP: #1098752)
.
apt (0.9.7.8~exp1) experimental; urgency=low
.
[ Manpages translation updates ]
* Italian (Beatrice Torracca). Closes: #696601
.
[ Programs translation updates ]
* Japanese (Kenshi Muto). Closes: #699783
.
[ Michael Vogt ]
* fix pkgProblemResolver::Scores, thanks to Paul Wise.
Closes: #697577
* fix missing translated apt.8 manpages, thanks to Helge Kreutzmann
for the report. Closes: #696923
* apt-pkg/contrib/progress.cc:
- Make "..." translatable to fix inconsistencies in the output
of e.g. apt-get update. While this adds new translatable strings,
not having translations for them will not break anything.
Thanks to Guillem Jover. Closes: #696225
* debian/apt.cron.daily:
- when reading from /dev/urandom, use less entropy and fix a rare
bug when the random number chksum is less than 1000.
Closes: #695285
* methods/https.cc:
- reuse connection in https, thanks to Thomas Bushnell, BSG for the
patch. LP: #1087543, Closes: #695359
- add missing curl_easy_cleanup()
* methods/http.cc:
- quote spaces in filenames to ensure as the http method is also
(potentially) used for non deb,dsc content that may contain
spaces, thanks to Daniel Hartwig and Thomas Bushnell
(LP: #1086997)
- quote plus in filenames to work around a bug in the S3 server
(LP: #1003633)
* apt-pkg/indexrecords.cc:
- support '\r' in the Release file
.
[ David Kalnischkies ]
* apt-pkg/depcache.cc:
- prefer to install packages which have an already installed M-A:same
sibling while choosing providers (LP: #1130419)
Checksums-Sha1:
fa45ba64e4590fa979e26af3498a05f76e7b5bdd 1799 apt_0.9.9.1~ubuntu1.dsc
91b8c5389cc7e56bd2041b01286b61ab39c2bf39 3407848 apt_0.9.9.1~ubuntu1.tar.gz
Checksums-Sha256:
0bb9bb75dc36f576aa9299f04b241d159a31705c78038b32594b5c3025f569bb 1799 apt_0.9.9.1~ubuntu1.dsc
3bbec39bd7d7565dfc4332f649ad21f66d3b7c6575fce23a32bbd0862f483722 3407848 apt_0.9.9.1~ubuntu1.tar.gz
Files:
19b38e1d46ac2950be3ad957ecdb6ac2 1799 admin important apt_0.9.9.1~ubuntu1.dsc
e3d4d9a3ac143677bba54bce959ebfd7 3407848 admin important apt_0.9.9.1~ubuntu1.tar.gz
Original-Maintainer: APT Development Team <deity at lists.debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iEYEARECAAYFAlHdhPcACgkQliSD4VZixzSQ3ACaAlVYTyxS6qI6E45Yf5FRCL3e
NVcAoI9W1LRUgLp3TyOxtDgp7t6qigrE
=qTEr
-----END PGP SIGNATURE-----
More information about the Saucy-changes
mailing list