touch-packages team mailing list archive
-
touch-packages team
-
Mailing list archive
-
Message #27387
[Bug 1382401] [NEW] Easy to trigger 404/416 errors after recent security update
Public bug reported:
The recent security update make it easy to trigger debian bug #710924 -
i.e. apt does not deal well with 416 requests from the remote server.
TEST CASE:
1 install latest apt from security
2 run sudo apt-get update
3 run sudo apt-get update again and ctrl somewhere in the middle
4 run sudo apt-get update again
5 verify that you get either 404 or 416 errors
6 install the updated version from prospoed
7 verify that sudo apt-get update works now
8 verify that steps 2-4 do not lead to a failure
** Affects: apt (Ubuntu)
Importance: High
Status: Fix Released
** Affects: apt (Ubuntu Lucid)
Importance: High
Status: In Progress
** Affects: apt (Ubuntu Precise)
Importance: High
Status: In Progress
** Also affects: apt (Ubuntu Lucid)
Importance: Undecided
Status: New
** Also affects: apt (Ubuntu Precise)
Importance: Undecided
Status: New
** Changed in: apt (Ubuntu Lucid)
Status: New => In Progress
** Changed in: apt (Ubuntu Lucid)
Importance: Undecided => High
** Changed in: apt (Ubuntu)
Importance: Undecided => High
** Changed in: apt (Ubuntu)
Status: New => Fix Released
** Changed in: apt (Ubuntu Precise)
Status: New => In Progress
** Changed in: apt (Ubuntu Precise)
Importance: Undecided => High
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to apt in Ubuntu.
https://bugs.launchpad.net/bugs/1382401
Title:
Easy to trigger 404/416 errors after recent security update
Status in “apt” package in Ubuntu:
Fix Released
Status in “apt” source package in Lucid:
In Progress
Status in “apt” source package in Precise:
In Progress
Bug description:
The recent security update make it easy to trigger debian bug #710924
- i.e. apt does not deal well with 416 requests from the remote
server.
TEST CASE:
1 install latest apt from security
2 run sudo apt-get update
3 run sudo apt-get update again and ctrl somewhere in the middle
4 run sudo apt-get update again
5 verify that you get either 404 or 416 errors
6 install the updated version from prospoed
7 verify that sudo apt-get update works now
8 verify that steps 2-4 do not lead to a failure
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apt/+bug/1382401/+subscriptions
Follow ups
-
[Bug 1382401] Re: Easy to trigger 404/416 errors after recent security update
From: Mathew Hodson, 2015-04-16
-
[Bug 1382401] Proposed package removed from archive
From: Steve Langasek, 2015-04-16
-
[Bug 1382401] Proposed package removed from archive
From: Steve Langasek, 2015-04-16
-
[Bug 1382401] Re: Easy to trigger 404/416 errors after recent security update
From: Steve Langasek, 2015-04-16
-
[Bug 1382401] Re: Easy to trigger 404/416 errors after recent security update
From: Mathew Hodson, 2015-04-05
-
[Bug 1382401] [apt/lucid] verification still needed
From: Ubuntu Foundations Team Bug Bot, 2015-03-02
-
[Bug 1382401] Re: Easy to trigger 404/416 errors after recent security update
From: Bug Watch Updater, 2014-12-11
-
[Bug 1382401] Re: Easy to trigger 404/416 errors after recent security update
From: Mathew Hodson, 2014-12-10
-
[Bug 1382401] Re: Easy to trigger 404/416 errors after recent security update
From: Launchpad Bug Tracker, 2014-11-13
-
[Bug 1382401] Update Released
From: Brian Murray, 2014-11-13
-
[Bug 1382401] Re: Easy to trigger 404/416 errors after recent security update
From: Chris J Arges, 2014-11-12
-
[Bug 1382401] Re: Easy to trigger 404/416 errors after recent security update
From: Mathew Hodson, 2014-11-07
-
[Bug 1382401] Re: Easy to trigger 404/416 errors after recent security update
From: Launchpad Bug Tracker, 2014-10-30
-
[Bug 1382401] Please test proposed package
From: Brian Murray, 2014-10-30
-
[Bug 1382401] Re: Easy to trigger 404/416 errors after recent security update
From: Brian Murray, 2014-10-30
-
[Bug 1382401] [NEW] Easy to trigger 404/416 errors after recent security update
From: Michael Vogt, 2014-10-17
References