UbuntuUpdates.org

Package "dpkg"

Name: dpkg

Description:

Debian package management system

Latest version: 1.17.5ubuntu5.8
Release: trusty (14.04)
Level: updates
Repository: main
Homepage: https://wiki.debian.org/Teams/Dpkg

Links


Download "dpkg"


Other versions of "dpkg" in Trusty

Repository Area Version
base main 1.17.5ubuntu5
security main 1.17.5ubuntu5.6

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1.17.5ubuntu5.8 2018-03-14 21:07:12 UTC

  dpkg (1.17.5ubuntu5.8) trusty; urgency=medium

  * Add support for .deb archives with a control member not compressed
    (control.tar) or compressed with xz (control.tar.xz) LP: #1730627.

 -- Adam Conrad <email address hidden> Mon, 04 Dec 2017 12:15:45 -0700

Source diff to previous version
1730627 xz compressed control.tar files not supported

Version: 1.17.5ubuntu5.7 2016-06-23 19:06:30 UTC

  dpkg (1.17.5ubuntu5.7) trusty; urgency=medium

  * Backport from Debian (LP: #1587667):
    - Allow detached upstream signatures for upstream orig.tar files in the
      .dsc file. Suggested by Daniel Kahn Gillmor <email address hidden>.
      Closes: #759478
    - Allow detached upstream orig tarball signatures when extracting
      version 1.0 non-native source packages.

 -- Colin Watson <email address hidden> Tue, 14 Jun 2016 19:31:28 +0100

Source diff to previous version
1587667 Import from Debian fails for source packages with included tarball .asc
759478 dpkg-source should accept an upstream signature - Debian Bug report logs

Version: 1.17.5ubuntu5.6 2016-04-26 05:06:31 UTC

  dpkg (1.17.5ubuntu5.6) trusty; urgency=medium

  * dpkg-maintscript-helper: s/exit/return/ in subshells (LP: #1574285)

 -- Adam Conrad <email address hidden> Mon, 25 Apr 2016 12:44:01 -0600

Source diff to previous version
1574285 dpkg-maintscript-helper: prepare_dir_to_symlink can never succeed

Version: 1.17.5ubuntu5.5 2015-11-26 21:06:29 UTC

  dpkg (1.17.5ubuntu5.5) trusty-security; urgency=medium

  * SECURITY UPDATE: multiple security issues
    - dpkg-deb/extract.c: Fix off-by-one write access on versionbuf
      variable.
    - dpkg-deb/extract.c: Fix off-by-one write access on ctrllenbuf
      variable. (CVE-2015-0860)
    - lib/dpkg/ar.c: Fix an off-by-one read access in ar member name
      variable.
    - Thanks to Guillem Jover and Hanno Böck for the patches!

 -- Marc Deslauriers Thu, 26 Nov 2015 07:57:34 -0500

Source diff to previous version
CVE-2015-0860 off-by-one write access in dpkg-deb

Version: 1.17.5ubuntu5.4 2015-04-09 21:06:42 UTC

  dpkg (1.17.5ubuntu5.4) trusty-security; urgency=medium

  * SECURITY UPDATE: OpenPGP Armor Header Line parsing issue
    - scripts/Dpkg/Control/HashCore.pm: adjust whitespace parsing.
    - scripts/Makefile.*, scripts/t/700_Dpkg_Control.t,
      scripts/t/700_Dpkg_Control/bogus-armor-formfeed.dsc: added tests.
    - Patch thanks to Guillem Jover
    - CVE-2015-0840
 -- Marc Deslauriers <email address hidden> Thu, 09 Apr 2015 08:41:39 -0400




About   -   Send Feedback to @ubuntu_updates