Package: apt
Version: 3.0.3
Severity: wishlist
I just noticed, that when one has a DEB822-style sources file, like e.g.
# /etc/apt/sources.list.d/debian.sources
Types: deb
URIs: http://ftp.de.debian.org/debian/
Suites: trixie trixie-updates
Components: main contrib non-free-firmware
Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg
Types: deb
URIs: http://security.debian.org/
Suites: trixie-security
Components: main contrib non-free-firmware
Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg
the introduction of a single space between those two blocks, i.e. in this
example between the Signed-By of the first block and the Types of the second,
will make an "apt update" only load lists from the second block, here
trixie-security, and packages from the first block will be uninstallable.
This isi easy to break when someone manually edits the file and quite hard to
spot and I've not seen apt complain about a mal-formed file, so I found this
only by diffing against a known-good config.
-- System Information:
Debian Release: 13.1
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 6.12.41+deb13-amd64 (SMP w/20 CPU threads; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages apt depends on:
ii adduser 3.152
ii base-passwd 3.6.7
ii debian-archive-keyring 2025.1
ii libapt-pkg7.0 3.0.3
ii libc6 2.41-12
ii libgcc-s1 14.2.0-19
ii libseccomp2 2.6.0-2
ii libssl3t64 3.5.1-1+deb13u1
ii libstdc++6 14.2.0-19
ii libsystemd0 257.8-1~deb13u2
ii sqv 1.3.0-3
Versions of packages apt recommends:
ii ca-certificates 20250419
Versions of packages apt suggests:
ii apt-doc 3.0.3
ii aptitude 0.8.13-7
ii dpkg-dev 1.22.21
ii gnupg 2.4.7-21
ii powermgmt-base 1.38
-- no debconf information
