Bug#704653: marked as done (apt: segfault with http sources whose name contains '[')
Your message dated Mon, 08 Apr 2013 15:32:47 +0000
with message-id <E1UPE3r-00077Y-K0@franck.debian.org>
and subject line Bug#704653: fixed in apt 0.9.7.9~exp3
has caused the Debian Bug report #704653,
regarding apt: segfault with http sources whose name contains '['
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)
--
704653: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=704653
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
Package: apt
Version: 0.9.7.8
Severity: minor
Issue also reproduced with the package in experimental: 0.9.7.9~exp2
I accidentally wrote a sources.list line that contained a ']' character.
I expect 'apt-get update' to fail to resolve the host name and fail in
one way or another. Instead, apt-get just segfailts.
An example sources.list file:
deb http://ftp.us.debian.org/debian sid main
deb http://hostname[ whatever
# apt-get update
Segmentation fault
# aptitude update
Segmentation fault
# apt-cache search apt
Segmentation fault
-- System Information:
Debian Release: 7.0
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing')
Architecture: amd64 (x86_64)
Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=he_IL.utf8, LC_CTYPE=he_IL.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages apt depends on:
ii debian-archive-keyring 2012.4
ii gnupg 1.4.12-7
ii libapt-pkg4.12 0.9.7.8
ii libc6 2.13-38
ii libgcc1 1:4.7.2-5
ii libstdc++6 4.7.2-5
apt recommends no packages.
Versions of packages apt suggests:
pn apt-doc <none>
ii aptitude 0.6.8.2-1
ii dpkg-dev 1.16.10
ii python-apt 0.8.8.2
ii synaptic 0.75.12
ii xz-utils 5.1.1alpha+20120614-2
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: apt
Source-Version: 0.9.7.9~exp3
We believe that the bug you reported is fixed in the latest version of
apt, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 704653@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Michael Vogt <mvo@debian.org> (supplier of updated apt package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Mon, 08 Apr 2013 17:09:00 +0200
Source: apt
Binary: apt libapt-pkg4.12 libapt-inst1.5 apt-doc libapt-pkg-dev libapt-pkg-doc apt-utils apt-transport-https
Architecture: source all amd64
Version: 0.9.7.9~exp3
Distribution: experimental
Urgency: low
Maintainer: APT Development Team <deity@lists.debian.org>
Changed-By: Michael Vogt <mvo@debian.org>
Description:
apt - commandline package manager
apt-doc - documentation for APT
apt-transport-https - https download transport for APT
apt-utils - package managment related utility programs
libapt-inst1.5 - deb package format runtime library
libapt-pkg-dev - development files for APT's libapt-pkg and libapt-inst
libapt-pkg-doc - documentation for APT development
libapt-pkg4.12 - package managment runtime library
Closes: 704653 704723
Changes:
apt (0.9.7.9~exp3) experimental; urgency=low
.
[ Michael Vogt ]
* apt-pkg/sourcelist.cc:
- fix segfault when a hostname contains a [, thanks to
Tzafrir Cohen (closes: #704653)
* debian/control:
- replace manpages-it (closes: #704723)
.
[ David Kalnischkies ]
* various simple changes to fix cppcheck warnings
* apt-pkg/pkgcachegen.cc:
- do not store the MD5Sum for every description language variant as
it will be the same for all so it can be shared to save cache space
- handle language tags for descriptions are unique strings to be shared
- factor version string creation out of NewDepends, so we can easily reuse
version strings e.g. for implicit multi-arch dependencies
- equal comparisions are used mostly in same-source relations,
so use this to try to reuse some version strings
- sort group and package names in the hashtable on insert
- share version strings between same versions (of different architectures)
to save some space and allow quick comparisions later on
* apt-pkg/pkgcache.cc:
- assume sorted hashtable entries for groups/packages
* apt-pkg/cacheiterators.h:
- provide DepIterator::IsSatisfied as a nicer shorthand for DepCheck
* apt-pkg/deb/debversion.cc:
- add a string-equal shortcut for equal version comparisions
.
[ Marc Deslauriers ]
* make apt-ftparchive generate missing deb-src hashes (LP: #1078697)
Checksums-Sha1:
a0974966f51758d7bbfb2d9058f01bf45199f6c2 1709 apt_0.9.7.9~exp3.dsc
f3432519c03389fe45046c67d05bbd523d6c939b 3500734 apt_0.9.7.9~exp3.tar.gz
ce2288824371977f32bf81a720f555ca2b7c850c 290182 apt-doc_0.9.7.9~exp3_all.deb
18a4430dae60f5f830e66be81aa949dee3564b3e 964652 libapt-pkg-doc_0.9.7.9~exp3_all.deb
377c256fbe9601ff9e72614833c6cd368e6bca98 902070 libapt-pkg4.12_0.9.7.9~exp3_amd64.deb
655421c3b5d9fe9b9314fd4f0a803b13b1dd04d8 168364 libapt-inst1.5_0.9.7.9~exp3_amd64.deb
07caf555ec8af6eebe05302fbb550226454e81d8 1320146 apt_0.9.7.9~exp3_amd64.deb
5bc289b8efddbdcd0b8df2387dceba29ab991f49 189446 libapt-pkg-dev_0.9.7.9~exp3_amd64.deb
71fe174b4552cf25a3de2bf821a7062bd73458f0 390290 apt-utils_0.9.7.9~exp3_amd64.deb
1fde314032a2f7ddcac92628944bc46b004a25ce 110356 apt-transport-https_0.9.7.9~exp3_amd64.deb
Checksums-Sha256:
f0b0c6c19cb8b3c6c6036bc376dd54eb3b49137d732cb751b8b2c00595d8c3de 1709 apt_0.9.7.9~exp3.dsc
b49d8bc70fa205d53d1cd8837cfd76bd4cb758dbb29cdc2d12974d4771284ec1 3500734 apt_0.9.7.9~exp3.tar.gz
a4839d3758b0960e65504cde89fef594352f1c57fbab2bdb7fbe75e2d5cbb577 290182 apt-doc_0.9.7.9~exp3_all.deb
b335f108c2aeec78812e66a993b5064b4a4ba31a0ded690342e6cec49e287fcd 964652 libapt-pkg-doc_0.9.7.9~exp3_all.deb
6f0a43d53da9e6f9bdf81978dabb529b628a0918543f2812e1aa597f8ac0d126 902070 libapt-pkg4.12_0.9.7.9~exp3_amd64.deb
43bdfd64966970c3b7ec3513ed598b56e318b164044e6c1d4844435f82407ba5 168364 libapt-inst1.5_0.9.7.9~exp3_amd64.deb
93402ed335ea440193b6f6f71fdc7b3aacb37841c4c22f6c034734ab4d7ab715 1320146 apt_0.9.7.9~exp3_amd64.deb
9a1f05e32864030b170ed8d83332d986f45e938e87f8c523bce33604fe4d7c7d 189446 libapt-pkg-dev_0.9.7.9~exp3_amd64.deb
082ea5c88fb68dbbb63dbe471ea0505d06cab3cd9f395e8a093ba02efc207825 390290 apt-utils_0.9.7.9~exp3_amd64.deb
728652f5f113509afd855070fbac8b192ba7b1236354dce87bbbf31b8fd593ff 110356 apt-transport-https_0.9.7.9~exp3_amd64.deb
Files:
9b82bae94a41d35a9af1e98ce827aa3c 1709 admin important apt_0.9.7.9~exp3.dsc
45788590b27d1a08425881b47a004450 3500734 admin important apt_0.9.7.9~exp3.tar.gz
69893d455410f9970f81f5069cb6c376 290182 doc optional apt-doc_0.9.7.9~exp3_all.deb
6e8c7cb3fb562b70b39f8ee75589663e 964652 doc optional libapt-pkg-doc_0.9.7.9~exp3_all.deb
27f257da882fdf61f788187c2fc0b168 902070 libs important libapt-pkg4.12_0.9.7.9~exp3_amd64.deb
9d109ef90d58c479aca1b12e1ecf89c7 168364 libs important libapt-inst1.5_0.9.7.9~exp3_amd64.deb
d671d32e3e00cd778db8e9eaf0a62f0a 1320146 admin important apt_0.9.7.9~exp3_amd64.deb
2a421efb4ec5c1a197ce1d3f13dbf1f4 189446 libdevel optional libapt-pkg-dev_0.9.7.9~exp3_amd64.deb
825b6db8d84f954872c8fd096f6a0a62 390290 admin important apt-utils_0.9.7.9~exp3_amd64.deb
bf2771c24a6afb7a9c63b222280db601 110356 admin optional apt-transport-https_0.9.7.9~exp3_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iEYEARECAAYFAlFi4LQACgkQliSD4VZixzTjOwCgl5etZVOyrnHS0r3I6rIsnCj8
L24AoIzrrcFZS4Bv4WAFmXxT6dHiOL4d
=vSWC
-----END PGP SIGNATURE-----
--- End Message ---
Reply to: