*** This bug is a security vulnerability ***
Public security bug reported:
Binary package hint: apt
This is new to feisty, there has been a similar (the same!?) bug in
gutsy++ see #243630
it seems only to have an effect on the gzipped files ...
at the moment, the official mirrors hold lines like these:
Suite: feisty-security
[...]
SHA256:
[...]
baa89858c7e545390273530ba63c61b94c2e09d38c28b0a0311bfa7bde396181
174491 main/binary-sparc/Packages.gz
baa89858c7e545390273530ba63c61b94c2e09d38c28b0a0311bfa7bde396181
12628 main/debian-installer/binary-amd64/Packages.gz
baa89858c7e545390273530ba63c61b94c2e09d38c28b0a0311bfa7bde396181
1471 restricted/binary-ia64/Packages.gz
baa89858c7e545390273530ba63c61b94c2e09d38c28b0a0311bfa7bde396181
16196 universe/source/Sources.gz
baa89858c7e545390273530ba63c61b94c2e09d38c28b0a0311bfa7bde396181
20 restricted/debian-installer/binary-hppa/Packages.gz
the very same checksum for every single gzipped file in every Release
file of feisty (feisty, feisty-security, ...) seems to be broken - i've
looked at a few, check for yourself
** Affects: apt (Ubuntu)
Importance: Undecided
Status: New
** Visibility changed to: Public
--
sha256 signatures in release files (feisty) for all gzipped files broken
https://bugs.launchpad.net/bugs/269014
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
