Bug#457817: aptitude: sudo aptitude safe-upgrade wants to update to the same version over and over if the package is provided by different repositories in sources.list

[Daniel Hartwig <mandyke@gmail.com>]

Control: tags -1 + wontfix
Control: merge 81175 -1

See the merged reports.  In summary, these two repositories:

> deb http://ftp.de.debian.org/debian/ experimental main
> deb http://aqbanking.alioth.debian.org/debian/ experimental/

are providing the same version of the same package with different
MD5Sums.  This causes apt to want to install the other version.

Third-party repositories if they are providing recompiled packages
should never use the exact same version number as the official archive.
Instead they should append their own identifier to keep everything
unique.

The correct choice of identifier depends on the purpose of the
repository.  Consider an upstream version “1.2” with Debian version
“1.2-1”.

* Third-party provides preview only, no added features

Use something like “1.2-1~pre1” to sort before the official version so
that the package is updated from the official archive once it becomes
available there.

* Third-party provides additional features

Use something like “1.2-1+extra1” to sort after the official version so
that apt will not install from the official archive if the third-party
provides the more recent version.