Ubuntu
firefox package

firefox package stealh installs snapd via apt not a DEB

Bug #1966065 reported by rec9140
14
This bug affects 3 people
Affects Status Importance Assigned to Milestone
firefox (Ubuntu)
Confirmed
Undecided
Unassigned

Bug Description

 What happened instead
Upgrades or new installs for *bunutus on 22.04 Jammy Jellyfish install snapd when using apt to install or update the firefox browser.

For those which have removed and purged snapd, the new package will stealth sneak attack a snapd setup in place of a DEB based, unless snapd is specifically blacklisted and blocked.

Should not use snpad for installs which have been done via apt to install a DEB package by USER CHOICE OVERRIDING the current development default of installing a snapd based setup.

 What you expected to happen
Should install a DEB package and install the browser via the method the USER DESIRES.

Package management should respect USER CHOICE AND DESIRES to USE THE PACKAGING OF ***USER*** CHOICE if via apt, then DEB should be used, be it firefox or any other package. If the USER DESIRES/CHOOSES to use a snap based version via that packaging system/tools then go with that.

apt tools including synaptic should NOT sneak or even change packaging methodology ie: snap in place of a DEB when using apt/synaptic/discover/muon etc. tools.

Description: Ubuntu Jammy Jellyfish (development branch)
Release: 22.04

Revision history for this message
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in firefox (Ubuntu):
status: New → Confirmed
Revision history for this message
Olivier Tilloy (osomon) wrote :

This is neither stealthy (there is a debconf prompt explaining what is going on), nor an attack.
It is working as intended. Whether you like it or not is a matter of opinion, but this is not a bug.

Changed in firefox (Ubuntu):
status: Confirmed → Invalid
Revision history for this message
rec9140 (rec9140) wrote :

This is not the process for apt, apt-get, synaptic.
If user selects package via these then it should install a DEB based package.

If the USER selects to install via what ever programs/tools exist for snaps etc. then its should follow suit to respect that format and install a snap or what ever.

USER CHOICE SHOULD BE RESPECTED in apt/apt-get/syanptic to use DEB.

This is STEALTHY AND SNEAKS In a DIFFERING PACKAGE format via a DEB. Which is not correct, or warranted.

Tools should respect the packaging format that is being used via the tool being used, apt etc. means the user wants a DEB, not some other format.

This is valid security violation.

Changed in firefox (Ubuntu):
status: Invalid → Confirmed
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.