[Bug 795602] Re: Please SRU aptitude 0.6.3-3.2

[Marcus Bointon]

Well I didn't post it as an SRU - I'd not heard of them until my
original backport request was changed into one. I'm not in a position to
supply or recommend a particular fix or patch for this, other than it
seems to need to be version 0.6.3-3.2 or later, so I can't sensibly do
step 3.

I've asked on IRC to find a supervisor.

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to aptitude in Ubuntu.
https://bugs.launchpad.net/bugs/795602

Title:
  Please SRU aptitude 0.6.3-3.2

Status in “aptitude” package in Ubuntu:
  Incomplete

Bug description:
  I've just run into this nasty bug in aptitude that renders it entirely unusable for me:
  http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=557580

  There is a workaround, which is to revert to apt-get, which isn't
  broken in this way, however, I'm sure we're not meant to be migrating
  in that direction.

  I'm not sure if this is a security concern, but it certainly has
  potential to cause huge damage, e.g. by allowing installation of
  packages that have been specifically blocked. I ran into this on MySQL
  where it was ignoring a pin that meant it wanted to upgrade from 5.1
  to 5.5 as a regular update, which could be fatal to many apps.

  0.6.3-3.2 is in Natty, but not Maverick, so I guess Maverick suffers
  the same problem. If this backport has too much overhead, is it worth
  reporting as a bug against 4.11 to fix just this problem? The
  alternative is to never use aptitude again!

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/aptitude/+bug/795602/+subscriptions