Publishing details

Published on 2020-12-09
Copied from ubuntu focal in Private PPA for Ubuntu Security Team by Marc Deslauriers

Changelog

apt (2.0.2ubuntu0.2) focal-security; urgency=high

  * SECURITY UPDATE: Integer overflow in parsing (LP: #1899193)
    - apt-pkg/contrib/arfile.cc: add extra checks.
    - apt-pkg/contrib/tarfile.cc: limit tar item sizes to 128 GiB
    - apt-pkg/deb/debfile.cc: limit control file sizes to 64 MiB
    - test/*: add tests.
    - CVE-2020-27350
  * Additional hardening:
    - apt-pkg/contrib/tarfile.cc: Limit size of long names and links to 1 MiB
  * .gitlab-ci.yml: Test on focal, not unstable

 -- Julian Andres Klode <email address hidden>  Mon, 07 Dec 2020 12:08:43 +0100

Available diffs

diff from 2.0.2ubuntu0.1 (in ~ubuntu-security-proposed/ubuntu/ppa) to 2.0.2ubuntu0.2 (5.6 KiB)
diff from 2.0.2 (in Debian) to 2.0.2ubuntu0.2 (18.3 KiB)

Builds

Built packages

apt commandline package manager

apt-dbgsym debug symbols for apt

apt-doc documentation for APT

apt-transport-https transitional package for https support

apt-utils package management related utility programs

apt-utils-dbgsym debug symbols for apt-utils

libapt-pkg-dev development files for APT's libapt-pkg and libapt-inst

libapt-pkg-doc documentation for APT development

libapt-pkg6.0 package management runtime library

libapt-pkg6.0-dbgsym debug symbols for libapt-pkg6.0

Package files

apt-dbgsym_2.0.2ubuntu0.2_amd64.ddeb (6.1 MiB)
apt-dbgsym_2.0.2ubuntu0.2_arm64.ddeb (5.9 MiB)
apt-dbgsym_2.0.2ubuntu0.2_armhf.ddeb (5.7 MiB)
apt-dbgsym_2.0.2ubuntu0.2_i386.ddeb (5.8 MiB)
apt-dbgsym_2.0.2ubuntu0.2_ppc64el.ddeb (6.6 MiB)
apt-dbgsym_2.0.2ubuntu0.2_riscv64.ddeb (4.0 MiB)
apt-dbgsym_2.0.2ubuntu0.2_s390x.ddeb (6.0 MiB)
apt-doc_2.0.2ubuntu0.2_all.deb (232.1 KiB)
apt-transport-https_2.0.2ubuntu0.2_all.deb (1.7 KiB)
apt-utils-dbgsym_2.0.2ubuntu0.2_amd64.ddeb (1.8 MiB)
apt-utils-dbgsym_2.0.2ubuntu0.2_arm64.ddeb (1.7 MiB)
apt-utils-dbgsym_2.0.2ubuntu0.2_armhf.ddeb (1.6 MiB)
apt-utils-dbgsym_2.0.2ubuntu0.2_i386.ddeb (1.7 MiB)
apt-utils-dbgsym_2.0.2ubuntu0.2_ppc64el.ddeb (1.8 MiB)
apt-utils-dbgsym_2.0.2ubuntu0.2_riscv64.ddeb (1.2 MiB)
apt-utils-dbgsym_2.0.2ubuntu0.2_s390x.ddeb (1.7 MiB)
apt-utils_2.0.2ubuntu0.2_amd64.deb (208.4 KiB)
apt-utils_2.0.2ubuntu0.2_arm64.deb (196.2 KiB)
apt-utils_2.0.2ubuntu0.2_armhf.deb (192.2 KiB)
apt-utils_2.0.2ubuntu0.2_i386.deb (222.1 KiB)
apt-utils_2.0.2ubuntu0.2_ppc64el.deb (213.8 KiB)
apt-utils_2.0.2ubuntu0.2_riscv64.deb (203.4 KiB)
apt-utils_2.0.2ubuntu0.2_s390x.deb (195.7 KiB)
apt_2.0.2ubuntu0.2.dsc (2.8 KiB)
apt_2.0.2ubuntu0.2.tar.xz (2.1 MiB)
apt_2.0.2ubuntu0.2_amd64.deb (1.2 MiB)
apt_2.0.2ubuntu0.2_arm64.deb (1.2 MiB)
apt_2.0.2ubuntu0.2_armhf.deb (1.2 MiB)
apt_2.0.2ubuntu0.2_i386.deb (1.3 MiB)
apt_2.0.2ubuntu0.2_ppc64el.deb (1.3 MiB)
apt_2.0.2ubuntu0.2_riscv64.deb (1.2 MiB)
apt_2.0.2ubuntu0.2_s390x.deb (1.2 MiB)
libapt-pkg-dev_2.0.2ubuntu0.2_amd64.deb (95.6 KiB)
libapt-pkg-dev_2.0.2ubuntu0.2_arm64.deb (95.6 KiB)
libapt-pkg-dev_2.0.2ubuntu0.2_armhf.deb (95.6 KiB)
libapt-pkg-dev_2.0.2ubuntu0.2_i386.deb (95.6 KiB)
libapt-pkg-dev_2.0.2ubuntu0.2_ppc64el.deb (95.6 KiB)
libapt-pkg-dev_2.0.2ubuntu0.2_riscv64.deb (95.6 KiB)
libapt-pkg-dev_2.0.2ubuntu0.2_s390x.deb (95.6 KiB)
libapt-pkg-doc_2.0.2ubuntu0.2_all.deb (788.7 KiB)
libapt-pkg6.0-dbgsym_2.0.2ubuntu0.2_amd64.ddeb (9.5 MiB)
libapt-pkg6.0-dbgsym_2.0.2ubuntu0.2_arm64.ddeb (9.2 MiB)
libapt-pkg6.0-dbgsym_2.0.2ubuntu0.2_armhf.ddeb (8.8 MiB)
libapt-pkg6.0-dbgsym_2.0.2ubuntu0.2_i386.ddeb (9.1 MiB)
libapt-pkg6.0-dbgsym_2.0.2ubuntu0.2_ppc64el.ddeb (10.3 MiB)
libapt-pkg6.0-dbgsym_2.0.2ubuntu0.2_riscv64.ddeb (6.2 MiB)
libapt-pkg6.0-dbgsym_2.0.2ubuntu0.2_s390x.ddeb (9.3 MiB)
libapt-pkg6.0_2.0.2ubuntu0.2_amd64.deb (813.0 KiB)
libapt-pkg6.0_2.0.2ubuntu0.2_arm64.deb (739.9 KiB)
libapt-pkg6.0_2.0.2ubuntu0.2_armhf.deb (733.3 KiB)
libapt-pkg6.0_2.0.2ubuntu0.2_i386.deb (884.6 KiB)
libapt-pkg6.0_2.0.2ubuntu0.2_ppc64el.deb (876.3 KiB)
libapt-pkg6.0_2.0.2ubuntu0.2_riscv64.deb (777.2 KiB)
libapt-pkg6.0_2.0.2ubuntu0.2_s390x.deb (748.6 KiB)