All Ubuntu package versions

AllUtopicTrustySaucyRaringPreciseLucidAll PPAs
DashboardRecent Search QueriesSearch Statistics
Alphabetical listSearchBugs

Package "libapt-pkg4.12"

Name: libapt-pkg4.12


package managment runtime library

Latest version: 0.8.16~exp12ubuntu10.20.1
Release: precise (12.04)
Level: updates
Repository: main
Head package: apt


Save this URL for the latest version of "libapt-pkg4.12":

All versions of this package Bug fixes
List of files in package Repository home page for package

Download "libapt-pkg4.12"

32-bit deb package 64-bit deb package APT INSTALL

Other versions of "libapt-pkg4.12" in Precise

base main 0.8.16~exp12ubuntu10
security main 0.8.16~exp12ubuntu10.20.1

Change Log

Version: 0.8.16~exp12ubuntu10.20.1 2014-09-23 18:06:54 UTC

  apt (0.8.16~exp12ubuntu10.20.1) precise-security; urgency=low

    - fix potential buffer overflow, thanks to the
      Google Security Team (CVE-2014-6273)
  * Fix regression in when file:/// sources
    are used and those are on a different partition than
    the apt state directoryo (LP: #1371058)
  * Revert FileFd::ReadOnlyGzip change
  * Fix regression when Dir::state::lists is set to a relative path
  * Fix regression when cdrom: sources got rewriten by apt-cdrom add
 -- Michael Vogt <email address hidden> Tue, 23 Sep 2014 09:02:26 +0200

Source diff to previous version
1371058 Regression: Latest apt security update returns Hash Sum mismatch for file: URI:s
CVE-2014-6273 buffer overflow in the HTTP transport code in apt-get

Version: 0.8.16~exp12ubuntu10.19 2014-09-16 18:07:20 UTC

  apt (0.8.16~exp12ubuntu10.19) precise-security; urgency=low

    - incorrect invalidating of unauthenticated data (CVE-2014-0488)
    - incorect verification of 304 reply (CVE-2014-0487)
    - incorrect verification of Acquire::Gzip indexes (CVE-2014-0489)
    - incorrect apt-get download validation (CVE-2014-0490)
 -- Michael Vogt <email address hidden> Mon, 15 Sep 2014 08:23:20 +0200

Source diff to previous version
CVE-2014-0488 incorrect invalidating of unauthenticated data
CVE-2014-0487 incorrect verification of 304 reply
CVE-2014-0489 incorrect verification of Acquire::Gzip indexes
CVE-2014-0490 incorrect apt-get download validation

Version: 0.8.16~exp12ubuntu10.17 2014-06-17 20:06:52 UTC

  apt (0.8.16~exp12ubuntu10.17) precise-security; urgency=low

  * SECURITY UPDATE: incorrect apt-get source validation (LP: #1329274)
    - warn if not authenticated in cmdline/, added regression
      test to test/integration/test-apt-get-source-authenticated,
    - CVE-2014-0478
 -- Michael Vogt <email address hidden> Thu, 12 Jun 2014 14:12:19 +0200

Source diff to previous version
1329274 apt-get source fails to warn on unauthenticated packages
CVE-2014-0478 apt: source packages not verified

Version: 0.8.16~exp12ubuntu10.16 2013-11-26 22:06:28 UTC

  apt (0.8.16~exp12ubuntu10.16) precise; urgency=low

  * Keep linux-tools packages matching installed kernels (LP: #1205284)
 -- Adam Conrad <email address hidden> Fri, 15 Nov 2013 15:16:45 +0000

Source diff to previous version

Version: 0.8.16~exp12ubuntu10.15 2013-10-10 18:06:40 UTC

  apt (0.8.16~exp12ubuntu10.15) precise; urgency=low

  [ David Kalnischkies ]
  * ftparchive/
    - handle the APT::FTPArchive::Packages::SHA512 option correctly instead
      of overriding SHA256, thanks Christian Marillat! (Closes: #680252,
      LP: #1234691)

  [ Colin Watson ]
  * Fix apt-ftparchive's generation of SHA512 checksums for Sources,
    previously incorrectly generated as SHA256 (LP: #1234705).
 -- Colin Watson <email address hidden> Thu, 03 Oct 2013 14:19:02 +0100

1234691 apt-utils: Ignore APT::FTPArchive::Packages::SHA512 option
1234705 apt-ftparchive writes SHA256 checksums in place of SHA512 in Sources
680252 apt-utils: Ignore APT::FTPArchive::Packages::SHA512 option - Debian Bug report logs

About   -   Changelog   -   Send Feedback