← Back to team overview

touch-packages team mailing list archive

[Bug 1382401] Re: Easy to trigger 404/416 errors after recent security update

 

This bug was fixed in the package apt - 0.8.16~exp12ubuntu10.22

---------------
apt (0.8.16~exp12ubuntu10.22) precise-proposed; urgency=low

  [ David Kalnischkies ]
  * methods/http.cc:
    - retry without partial data after a 416 response (closes: 710924)
      LP: #1382401
 -- Michael Vogt <michael.vogt@xxxxxxxxxx>   Fri, 17 Oct 2014 09:57:34 +0200

** Changed in: apt (Ubuntu Precise)
       Status: Fix Committed => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to apt in Ubuntu.
https://bugs.launchpad.net/bugs/1382401

Title:
  Easy to trigger 404/416 errors after recent security update

Status in “apt” package in Ubuntu:
  Fix Released
Status in “apt” source package in Lucid:
  Fix Committed
Status in “apt” source package in Precise:
  Fix Released

Bug description:
  The recent security update make it easy to trigger debian bug #710924
  - i.e. apt does not deal well with 416 requests from the remote
  server.

  TEST CASE:
  1 install latest apt from security
  2 run sudo apt-get update
  3 run sudo apt-get update again and ctrl somewhere in the middle
  4 run sudo apt-get update again 
  5 verify that you get either 404 or 416 errors

  6 install the updated version from prospoed
  7 verify that sudo apt-get update works now
  8 verify that steps 2-4 do not lead to a failure

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apt/+bug/1382401/+subscriptions


References