Just tested on Jaunty and confirmed the issue. However, I don't consider
this a security bug because one can simply set the default release to
'hardy-security' as opposed to 'hardy'. This is at worst a
documentation issue.
** Changed in: apt (Ubuntu)
Importance: Undecided => Low
** Changed in
Please don't assign the security team to bugs. If a bug is deemed a
security issue, subscribe the team instead.
** Changed in: apt (Ubuntu)
Assignee: Ubuntu Security Team (ubuntu-security) => (unassigned)
--
Setting APT::Default-Release blocks security fix and updates
https://bugs.launchpad
** Changed in: apt (Ubuntu)
Assignee: (unassigned) => Ubuntu Security Team (ubuntu-security)
--
Setting APT::Default-Release blocks security fix and updates
https://bugs.launchpad.net/bugs/295448
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed
This problem could be solved by changing APT::Default-Release behaviour:
it could only consider the first part of a package suite name whenever
it contains a dash.
--
Setting APT::Default-Release blocks security fix and updates
https://bugs.launchpad.net/bugs/295448
You received this bug notifica
Same goes for pinning. Here one can work around this bug by pinning all
the releases, e.g. to get package foo from jaunty any everything else
from interpid your /etc/apt/preferences should look somewhat like this:
Package: foo
Pin: release a=jaunty
Pin-Priority: 991
Package: *
Pin: release a=intr
Same here.
I have Kubuntu Hardy Heron, but I want to use the most recent version of
KMyMoney. In Debian, I can do this just setting default version to Etch
and pinning some packages from Lenny, but in Ubuntu, hardy, hardy-
security, hardy-updates and hardy-backports are different distributions.
T
