All Ubuntu package versions


AllUtopicTrustySaucyPreciseLucidAll PPAs
DashboardRecent Search QueriesSearch Statistics
Alphabetical listSearchBugs
CommentsResqueStathatMemoryTracker

Package "libapt-pkg4.12"

Name: libapt-pkg4.12

Description:

package managment runtime library

Latest version: 0.8.16~exp12ubuntu10.22
Release: precise (12.04)
Level: updates
Repository: main
Head package: apt

Links

Save this URL for the latest version of "libapt-pkg4.12": http://www.ubuntuupdates.org/libapt-pkg4.12

All versions of this package Bug fixes
List of files in package Repository home page for package

Download "libapt-pkg4.12"

32-bit deb package 64-bit deb package APT INSTALL

Other versions of "libapt-pkg4.12" in Precise

RepositoryAreaVersion
base main 0.8.16~exp12ubuntu10
security main 0.8.16~exp12ubuntu10.21

Change Log

Version: 0.8.16~exp12ubuntu10.22 2014-11-13 19:06:32 UTC

  apt (0.8.16~exp12ubuntu10.22) precise-proposed; urgency=low

  [ David Kalnischkies ]
  * methods/http.cc:
    - retry without partial data after a 416 response (closes: 710924)
      LP: #1382401
 -- Michael Vogt <email address hidden> Fri, 17 Oct 2014 09:57:34 +0200

Source diff to previous version
1382401 Easy to trigger 404/416 errors after recent security update

Version: 0.8.16~exp12ubuntu10.21 2014-10-08 17:06:42 UTC

  apt (0.8.16~exp12ubuntu10.21) precise-security; urgency=low

  * SECURITY UPDATE:
    - cmdline/apt-get.cc: fix insecure tempfile handling in
      apt-get changelog (CVE-2014-7206). Thanks to Guillem Jover
 -- Michael Vogt <email address hidden> Wed, 08 Oct 2014 10:35:46 +0200

Source diff to previous version
CVE-2014-7206 apt-get: Insecure temporary changelog handling

Version: 0.8.16~exp12ubuntu10.20.1 2014-09-23 18:06:54 UTC

  apt (0.8.16~exp12ubuntu10.20.1) precise-security; urgency=low

  * SECURITY UPDATE:
    - fix potential buffer overflow, thanks to the
      Google Security Team (CVE-2014-6273)
  * Fix regression in 0.9.7.9+deb7u3 when file:/// sources
    are used and those are on a different partition than
    the apt state directoryo (LP: #1371058)
  * Revert FileFd::ReadOnlyGzip change
  * Fix regression when Dir::state::lists is set to a relative path
  * Fix regression when cdrom: sources got rewriten by apt-cdrom add
 -- Michael Vogt <email address hidden> Tue, 23 Sep 2014 09:02:26 +0200

Source diff to previous version
1371058 Regression: Latest apt security update returns Hash Sum mismatch for file: URI:s
CVE-2014-6273 buffer overflow in the HTTP transport code in apt-get

Version: 0.8.16~exp12ubuntu10.19 2014-09-16 18:07:20 UTC

  apt (0.8.16~exp12ubuntu10.19) precise-security; urgency=low

  * SECURITY UPDATE:
    - incorrect invalidating of unauthenticated data (CVE-2014-0488)
    - incorect verification of 304 reply (CVE-2014-0487)
    - incorrect verification of Acquire::Gzip indexes (CVE-2014-0489)
    - incorrect apt-get download validation (CVE-2014-0490)
 -- Michael Vogt <email address hidden> Mon, 15 Sep 2014 08:23:20 +0200

Source diff to previous version
CVE-2014-0488 incorrect invalidating of unauthenticated data
CVE-2014-0487 incorrect verification of 304 reply
CVE-2014-0489 incorrect verification of Acquire::Gzip indexes
CVE-2014-0490 incorrect apt-get download validation

Version: 0.8.16~exp12ubuntu10.17 2014-06-17 20:06:52 UTC

  apt (0.8.16~exp12ubuntu10.17) precise-security; urgency=low

  * SECURITY UPDATE: incorrect apt-get source validation (LP: #1329274)
    - warn if not authenticated in cmdline/apt-get.cc, added regression
      test to test/integration/test-apt-get-source-authenticated,
      test/integration/framework.
    - CVE-2014-0478
 -- Michael Vogt <email address hidden> Thu, 12 Jun 2014 14:12:19 +0200

1329274 apt-get source fails to warn on unauthenticated packages
CVE-2014-0478 apt: source packages not verified



About   -   Changelog   -   Send Feedback