UbuntuUpdates.org

Package "apt"

Name: apt

Description:

commandline package manager
Latest version: 0.8.16~exp12ubuntu10.29
Release: precise (12.04)
Level: security
Repository: main

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "apt"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "apt" in Precise

Repository Area Version
base main 0.8.16~exp12ubuntu10
updates main 0.8.16~exp12ubuntu10.29

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 0.8.16~exp12ubuntu10.10 2013-03-14 14:06:59 UTC

  apt (0.8.16~exp12ubuntu10.10) precise-security; urgency=low

  * SECURITY UPDATE: InRelease verification bypass
    - CVE-2013-1051

  [ David Kalnischk ]
  [ Michael Vogt ]
  * apt-pkg/deb/debmetaindex.cc,
    test/integration/test-bug-595691-empty-and-broken-archive-files,
    test/integration/test-releasefile-verification:
    - disable InRelease downloading until the verification issue is
      fixed, thanks to Ansgar Burchardt for finding the flaw
 -- Marc Deslauriers <email address hidden> Wed, 13 Mar 2013 11:27:59 -0400
Source diff to previous version
CVE-2013-1051 RESERVED

Version: 0.8.16~exp12ubuntu10.7 2012-12-12 20:07:00 UTC

  apt (0.8.16~exp12ubuntu10.7) precise-security; urgency=low

  * SECURITY UPDATE: change permissions of
    /var/log/apt/term.log to 0640 (LP: #975199)
    - CVE-2012-0961
 -- Michael Vogt <email address hidden> Tue, 04 Dec 2012 15:38:12 +0100
Source diff to previous version
975199 term.log is world readable and shouldn't be
CVE-2012-0961 RESERVED

Version: 0.8.16~exp12ubuntu10.2 2012-06-15 22:06:43 UTC

  apt (0.8.16~exp12ubuntu10.2) precise-security; urgency=low

  * SECURITY UPDATE: Disable apt-key net-update for now, as validation
    code is still insecure
    - cmdline/apt-key: exit 1 immediately in net_update()
    - CVE-2012-0954
    - LP: #1013639
 -- Jamie Strandboge <email address hidden> Fri, 15 Jun 2012 08:02:02 -0500
Source diff to previous version
1013639 net-update verifcation checking is still insecure ...
CVE-2012-0954 RESERVED

Version: 0.8.16~exp12ubuntu10.1 2012-06-14 23:06:35 UTC

  apt (0.8.16~exp12ubuntu10.1) precise-security; urgency=low

  * adjust apt-key to ensure no collisions on subkeys too. Patch thanks to
    Marc Deslauriers. (LP: #1013128)
 -- Jamie Strandboge <email address hidden> Thu, 14 Jun 2012 11:30:50 -0500
1013128 gpg key shadowing


About   -   Send Feedback to @ubuntu_updates