apt 2.1.10ubuntu0.1 source package in Ubuntu

Changelog

apt (2.1.10ubuntu0.1) groovy-security; urgency=high

  * SECURITY UPDATE: Integer overflow in parsing (LP: #1899193)
    - apt-pkg/contrib/arfile.cc: add extra checks.
    - apt-pkg/contrib/tarfile.cc: limit tar item sizes to 128 GiB
    - apt-pkg/deb/debfile.cc: limit control file sizes to 64 MiB
    - test/*: add tests.
    - CVE-2020-27350
  * Additional hardening:
    - apt-pkg/contrib/tarfile.cc: Limit size of long names and links to 1 MiB
  * .gitlab-ci.yml: Test on groovy, not unstable

 -- Julian Andres Klode <email address hidden>  Mon, 07 Dec 2020 12:02:40 +0100

Upload details

Uploaded by:
Julian Andres Klode on 2020-12-07
Sponsored by:
Marc Deslauriers
Uploaded to:
Groovy
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
admin
Urgency:
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section
Groovy security on 2020-12-09 main admin

Downloads

File Size SHA-256 Checksum
apt_2.1.10ubuntu0.1.tar.xz 2.1 MiB 475fe7962898c276563ea5959583af218ae4f70d4d26ab820664aea043779d2c
apt_2.1.10ubuntu0.1.dsc 2.8 KiB 5673eaa7451ec73baa7e2ec5cd3728cc82980bb6aa6900f5663387d241e36d11

View changes file

Binary packages built by this source

apt: commandline package manager

 This package provides commandline tools for searching and
 managing as well as querying information about packages
 as a low-level access to all features of the libapt-pkg library.
 .
 These include:
  * apt-get for retrieval of packages and information about them
    from authenticated sources and for installation, upgrade and
    removal of packages together with their dependencies
  * apt-cache for querying available information about installed
    as well as installable packages
  * apt-cdrom to use removable media as a source for packages
  * apt-config as an interface to the configuration settings
  * apt-key as an interface to manage authentication keys

apt-dbgsym: debug symbols for apt
apt-doc: documentation for APT

 This package contains the user guide and offline guide for various
 APT tools which are provided in a html and a text-only version.

apt-transport-https: transitional package for https support

 This is a dummy transitional package - https support has been moved into
 the apt package in 1.5. It can be safely removed.

apt-utils: package management related utility programs

 This package contains some less used commandline utilities related
 to package management with APT.
 .
  * apt-extracttemplates is used by debconf to prompt for configuration
    questions before installation.
  * apt-ftparchive is used to create Packages and other index files
    needed to publish an archive of Debian packages
  * apt-sortpkgs is a Packages/Sources file normalizer.

apt-utils-dbgsym: debug symbols for apt-utils
libapt-pkg-dev: development files for APT's libapt-pkg and libapt-inst

 This package contains the header files and libraries for
 developing with APT's libapt-pkg Debian package manipulation
 library and the libapt-inst deb/tar/ar library.

libapt-pkg-doc: documentation for APT development

 This package contains documentation for development of the APT
 Debian package manipulation program and its libraries.
 .
 This includes the source code documentation generated by doxygen
 in html format.

libapt-pkg6.0: package management runtime library

 This library provides the common functionality for searching and
 managing packages as well as information about packages.
 Higher-level package managers can depend upon this library.
 .
 This includes:
  * retrieval of information about packages from multiple sources
  * retrieval of packages and all dependent packages
    needed to satisfy a request either through an internal
    solver or by interfacing with an external one
  * authenticating the sources and validating the retrieved data
  * installation and removal of packages in the system
  * providing different transports to retrieve data over cdrom, ftp,
    http(s), rsh as well as an interface to add more transports like
    tor+http(s) (apt-transport-tor).

libapt-pkg6.0-dbgsym: debug symbols for libapt-pkg6.0