Hello everybody, is this vulnerability affecting also apt-get ? If yes, will there be another DSA soon?
I'm also encountering many errors when using apt -o Acquire::http::AllowRedirect=false update apt -o Acquire::http::AllowRedirect=false upgrade As written in announcement: This is known to break some proxies when used against security.debian.org. However I do not use proxy at all. I have problems with jessie/updates, cdn.debian.net, and http.debian.net Err http://security.debian.org jessie/updates/main i386 Packages 302 Found [IP: 217.196.149.233 80] Err http://security.debian.org jessie/updates/contrib i386 Packages 302 Found [IP: 217.196.149.233 80] Err http://security.debian.org jessie/updates/non-free i386 Packages 302 Found [IP: 217.196.149.233 80] Fetched 151 kB in 9s (16.2 kB/s) Err:14 http://cdn.debian.net/debian stretch Release 302 Found [IP: 2001:4f8:1:c::15 80] Err:15 http://cdn.debian.net/debian stretch-updates Release 302 Found [IP: 2001:4f8:1:c::15 80] Err:16 http://cdn.debian.net/debian stretch-backports Release 302 Found [IP: 2001:4f8:1:c::15 80] Err:7 http://http.debian.net/debian stretch Release 302 Found [IP: 2001:67c:2564:a119::148:14 80] Err:8 http://http.debian.net/debian stretch-updates Release 302 Found [IP: 2001:67c:2564:a119::148:14 80] Err:9 http://http.debian.net/debian stretch-backports Release 302 Found [IP: 2001:67c:2564:a119::148:14 80] -- Best Regards Vladislav Kurz