touch-packages team mailing list archive

Thread
Date

[Bug 1382401] [apt/lucid] verification still needed

To: touch-packages@xxxxxxxxxxxxxxxxxxx
From: Ubuntu Foundations Team Bug Bot <1382401@xxxxxxxxxxxxxxxxxx>
Date: Mon, 02 Mar 2015 17:27:02 -0000
Reply-to: Bug 1382401 <1382401@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

The fix for this bug has been awaiting testing feedback in the -proposed
repository for lucid for more than 90 days.  Please test this fix and
update the bug appropriately with the results.  In the event that the
fix for this bug is still not verified 15 days from now, the package
will be removed from the -proposed repository.

** Tags added: removal-candidate

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to apt in Ubuntu.
https://bugs.launchpad.net/bugs/1382401

Title:
  Easy to trigger 404/416 errors after recent security update

Status in apt package in Ubuntu:
  Fix Released
Status in apt source package in Lucid:
  Fix Committed
Status in apt source package in Precise:
  Fix Released
Status in apt package in Debian:
  Fix Released

Bug description:
  The recent security update make it easy to trigger debian bug
  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=710924 - i.e. apt
  does not deal well with 416 requests from the remote server.

  TEST CASE:
  1 install latest apt from security
  2 run sudo apt-get update
  3 run sudo apt-get update again and ctrl somewhere in the middle
  4 run sudo apt-get update again
  5 verify that you get either 404 or 416 errors

  6 install the updated version from prospoed
  7 verify that sudo apt-get update works now
  8 verify that steps 2-4 do not lead to a failure

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apt/+bug/1382401/+subscriptions

References

[Bug 1382401] [NEW] Easy to trigger 404/416 errors after recent security update
From: Michael Vogt, 2014-10-17