← Back to team overview

touch-packages team mailing list archive

  1. touch-packages team
  2. Mailing list archive
  3. Message #27387

[Bug 1382401] [NEW] Easy to trigger 404/416 errors after recent security update

  Thread PreviousDate PreviousThread Next 
Public bug reported:

The recent security update make it easy to trigger debian bug #710924 -
i.e. apt does not deal well with 416 requests from the remote server.

TEST CASE:
1 install latest apt from security
2 run sudo apt-get update
3 run sudo apt-get update again and ctrl somewhere in the middle
4 run sudo apt-get update again 
5 verify that you get either 404 or 416 errors

6 install the updated version from prospoed
7 verify that sudo apt-get update works now
8 verify that steps 2-4 do not lead to a failure

** Affects: apt (Ubuntu)
     Importance: High
         Status: Fix Released

** Affects: apt (Ubuntu Lucid)
     Importance: High
         Status: In Progress

** Affects: apt (Ubuntu Precise)
     Importance: High
         Status: In Progress

** Also affects: apt (Ubuntu Lucid)
   Importance: Undecided
       Status: New

** Also affects: apt (Ubuntu Precise)
   Importance: Undecided
       Status: New

** Changed in: apt (Ubuntu Lucid)
       Status: New => In Progress

** Changed in: apt (Ubuntu Lucid)
   Importance: Undecided => High

** Changed in: apt (Ubuntu)
   Importance: Undecided => High

** Changed in: apt (Ubuntu)
       Status: New => Fix Released

** Changed in: apt (Ubuntu Precise)
       Status: New => In Progress

** Changed in: apt (Ubuntu Precise)
   Importance: Undecided => High

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to apt in Ubuntu.
https://bugs.launchpad.net/bugs/1382401

Title:
  Easy to trigger 404/416 errors after recent security update

Status in “apt” package in Ubuntu:
  Fix Released
Status in “apt” source package in Lucid:
  In Progress
Status in “apt” source package in Precise:
  In Progress

Bug description:
  The recent security update make it easy to trigger debian bug #710924
  - i.e. apt does not deal well with 416 requests from the remote
  server.

  TEST CASE:
  1 install latest apt from security
  2 run sudo apt-get update
  3 run sudo apt-get update again and ctrl somewhere in the middle
  4 run sudo apt-get update again 
  5 verify that you get either 404 or 416 errors

  6 install the updated version from prospoed
  7 verify that sudo apt-get update works now
  8 verify that steps 2-4 do not lead to a failure

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apt/+bug/1382401/+subscriptions

Follow ups

References

  Thread PreviousDate PreviousThread Next