Bug#407511: apt: Wrong value for APT::Default-Release may cause unwanted
upgrades
Reply-To: Alain Kalker <miki@dds.nl>, 407511@bugs.debian.org
Resent-From: Alain Kalker <miki@dds.nl>
Resent-To: debian-bugs-dist@lists.debian.org
Resent-CC: APT Development Team <deity@lists.debian.org>
Resent-Date: Fri, 19 Jan 2007 03:03:06 +0000
Resent-Message-ID: <handler.407511.B.116917568221498@bugs.debian.org>
Resent-Sender: owner@bugs.debian.org
X-Debian-PR-Message: report 407511
X-Debian-PR-Package: apt
X-Debian-PR-Keywords:
X-Debian-PR-Source: apt
Received: via spool by submit@bugs.debian.org id=B.116917568221498
(code B ref -1); Fri, 19 Jan 2007 03:03:06 +0000
Received: (at submit) by bugs.debian.org; 19 Jan 2007 03:01:22 +0000
Received: from delta.dds.nl ([213.196.11.20])
by spohr.debian.org with esmtp (Exim 4.50)
id 1H7k0H-0005Zn-Vt
for submit@bugs.debian.org; Thu, 18 Jan 2007 19:01:22 -0800
Received: from miki-linux.lan (213-84-223-85.adsl.xs4all.nl [213.84.223.85])
(using TLSv1 with cipher DES-CBC3-SHA (168/168 bits))
(No client certificate requested)
by delta.dds.nl (A SMTP-Server) with ESMTP
id 47B8C4BD01; Fri, 19 Jan 2007 04:22:33 +0100 (CET)
Received: from miki by miki-linux.lan with local (Exim 4.63)
(envelope-from <miki@dds.nl>)
id 1H7kwM-0006ae-LZ; Fri, 19 Jan 2007 05:01:22 +0100
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: Alain Kalker <miki@dds.nl>
To: Debian Bug Tracking System <submit@bugs.debian.org>
Message-ID: <20070119040122.24346.44174.reportbug@miki-linux.lan>
X-Mailer: reportbug 3.31
Date: Fri, 19 Jan 2007 05:01:22 +0100
Delivered-To: submit@bugs.debian.org
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level:
X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE
autolearn=no version=2.60-bugs.debian.org_2005_01_02
Package: apt
Version: 0.6.46.4
Severity: important
On systems tracking multiple releases, depending on settings
(automatic upgrades, preferences etc), setting
APT::Default-Release to a non-existent or unreleased dist may cause APT
to upgrade all packages to the newest version instead.
Seen with:
APT::Default-Release "etch"
(should IMHO track "testing" (perhaps with a warning that "etch"
hasn't been released yet) but proposes to update to newest version
instead.)
APT::Default-Release "foobar"
(ignores release name entirely and proposes to update to newest version)
I would suggest that APT complain (loudly) in those cases and allow the
user to back out and correct the setting.
See also this thread on the Debian Forum:
http://forums.debian.net/viewtopic.php?p=44337&sid=f6d5d1c059892f6ed0e12e217167c130
-- Package-specific info:
-- apt-config dump --
APT "";
APT::Architecture "i386";
APT::Build-Essential "";
APT::Build-Essential:: "build-essential";
APT::Authentication "";
APT::Authentication::TrustCDROM "true";
APT::Periodic "";
APT::Periodic::Update-Package-Lists "1";
APT::Periodic::Download-Upgradeable-Packages "0";
APT::Default-Release "testing";
Dir "/";
Dir::State "var/lib/apt/";
Dir::State::lists "lists/";
Dir::State::cdroms "cdroms.list";
Dir::State::userstatus "status.user";
Dir::State::status "/var/lib/dpkg/status";
Dir::Cache "var/cache/apt/";
Dir::Cache::archives "archives/";
Dir::Cache::srcpkgcache "srcpkgcache.bin";
Dir::Cache::pkgcache "pkgcache.bin";
Dir::Etc "etc/apt/";
Dir::Etc::sourcelist "sources.list";
Dir::Etc::sourceparts "sources.list.d";
Dir::Etc::vendorlist "vendors.list";
Dir::Etc::vendorparts "vendors.list.d";
Dir::Etc::main "apt.conf";
Dir::Etc::parts "apt.conf.d";
Dir::Etc::preferences "preferences";
Dir::Bin "";
Dir::Bin::methods "/usr/lib/apt/methods";
Dir::Bin::dpkg "/usr/bin/dpkg";
DPkg "";
DPkg::Pre-Install-Pkgs "";
DPkg::Pre-Install-Pkgs:: "/usr/bin/apt-listchanges --apt || test $? -ne 10";
DPkg::Pre-Install-Pkgs:: "/usr/sbin/dpkg-preconfigure --apt || true";
DPkg::Tools "";
DPkg::Tools::Options "";
DPkg::Tools::Options::/usr/bin/apt-listchanges "";
DPkg::Tools::Options::/usr/bin/apt-listchanges::Version "2";
-- (no /etc/apt/preferences present) --
-- /etc/apt/sources.list --
#
# deb cdrom:[Debian GNU/Linux testing _Etch_ - Official Snapshot i386 NETINST Binary-1 20070109-22:36]/ etch contrib main
# deb cdrom:[Debian GNU/Linux testing _Etch_ - Official Snapshot i386 NETINST Binary-1 20070109-22:36]/ etch contrib main
deb ftp://download.xs4all.nl/debian/ etch main contrib non-free
deb-src ftp://download.xs4all.nl/debian/ etch main contrib non-free
deb ftp://download.xs4all.nl/debian/ unstable main contrib non-free
deb-src ftp://download.xs4all.nl/debian/ unstable main contrib non-free
deb http://security.debian.org/ etch/updates main contrib non-free
deb-src http://security.debian.org/ etch/updates main contrib non-free
deb http://www.in.fh-merseburg.de/~jahn/ etch main
deb-src http://www.in.fh-merseburg.de/~jahn/ etch main
deb http://download.videolan.org/pub/videolan/debian sid main
deb-src http://download.videolan.org/pub/videolan/debian sid main
-- System Information:
Debian Release: 4.0
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18-3-686
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Versions of packages apt depends on:
ii debian-archive-keyring 2006.11.22 GnuPG archive keys of the Debian a
ii libc6 2.3.6.ds1-8 GNU C Library: Shared libraries
ii libgcc1 1:4.1.1-21 GCC support library
ii libstdc++6 4.1.1-21 The GNU Standard C++ Library v3
apt recommends no packages.
-- no debconf information
Reply to: