+apt (1.3~exp3) experimental; urgency=medium
+
+ [ Petter Reinholdtsen ]
+ * Norwegian Bokmål program translation update (Closes: 827067)
+
+ [ David Kalnischkies ]
+ * apt-key: don't search PATH if command is a path already
+ * don't use FindFile for external Dir::Bin commands
+ * http: don't hang on redirect with length + connection close
+ * merge sources.list lines based on Release filename (Closes: 826944)
+ * avoid std::get_time usage to sidestep libstdc++6 bug (LP: 1593583)
+ * do not error if auto-detect-proxy cmd has no output (Closes: 827713)
+ * implement and document DIRECT for auto-detect-proxy
+ * run update post-invokes even on (partial) failures
+ * handle weak-security repositories as unauthenticated (Closes: 827364)
+ * generalize secure->insecure downgrade protection
+ * forbid insecure repositories by default expect in apt-get (Closes: 808367)
+ * source: if download is skipped, don't try to unpack
+ * better error message for insufficient hashsums (Closes: 827758)
+ * add [weak] tag to hash errors to indicate insufficiency
+ * ensure filesize of deb is included in the hashes list
+ * add insecure (and weak) allow-options for sources.list
+
+ [ Dominic Benson ]
+ * Reinstate caching of file hashes in apt-ftparchive (Closes: #806924)
+
+ [ Zhou Mo ]
+ * zh_CN.po: update simplified chinese translation
+
+ -- Julian Andres Klode <jak@debian.org> Wed, 22 Jun 2016 14:50:12 +0200
+
+apt (1.3~exp2) experimental; urgency=medium
+
+ [ Johannes 'josch' Schauer ]
+ * edsp: document unique package identifiers
+
+ [ David Kalnischkies ]
+ * edsp: warn if unexpected stanzas appear in the solution
+ * show globalerrors before asking for confirmation
+ * show final solution in --no-download --fix-missing mode
+ * document --no- as --show-upgraded is the default (Closes: 824456)
+ * fail instead of segfault on unreadable config files (Closes: 824503)
+ * convert EDSP to be based on FileFd instead of FILE*
+ * edsp: dump: support dumping into compressed file
+ * edsp: add Forbid-{New-Install,Remove} and Upgrade-All
+ * update symbols file
+ * no-change bump of Standards-Version to 3.9.8
+ * override lintian on doxygens embedded-javascript-library
+ * fix and document on the fly compressor config
+ * prevent C++ locale number formatting in text APIs (Closes: #825396)
+ * accept only the expected UTC timezones in date parsing (Closes: 819697)
+ * avoid changing the global LC_TIME for Release writing
+ * use de-localed std::put_time instead rolling our own
+ * use std::locale::global instead of setlocale
+ * look into the right textdomain for apt-utils again
+ * try to detect sudo spawned root-shell in prefixing (Closes: 825742)
+ * ignore std::locale exception on non-existent "" locale
+ * apt-key: change to / before find to satisfy its CWD needs.
+ Thanks to Samuel Thibault for 'finding' the culprit! (Closes: 826043)
+ * edsp: use an ID mapping for the internal solver
+ * edsp: use a stanza based interface for solution writing
+ * edsp: optionally store a compressed copy of the last scenario
+ * move 'dump' solver from apt-utils to apt package
+ * edsp: if internal is used, keep this decision
+ * edsp: if logging is requested, do it for internal, too
+ * edsp: drop privileges before executing solvers
+ * don't explicitly configure the last round of packages
+ * drop Dpkg::MaxArgs in favor of Dpkg::MaxArgsBytes
+ * do not hang on piped input in PipedFileFdPrivate
+ * don't leak an FD in lz4 (de)compression
+ * don't leak EDSP solver output fd
+ * don't leak FD in AutoProxyDetect command return parsing
+
+ [ Julian Andres Klode ]
+ * Provide complete apt bash completion.
+ Thanks to Elias Fröhner and Svyatoslav Gryaznov for the initial work
+ (LP: #1573547)
+ * apt.systemd.daily: Put opening brace of check_power on extra line
+ (LP: #1581985)
+ * Add conflicting Signed-By values to error message
+ * Normalize Signed-By values by removing trailing commas everywhere
+ * Pass -fvisibility-inlines-hidden to g++
+
+ [ Zhou Mo ]
+ * zh_CN.po: update simplified Chinese translation.
+
+ [ Yuri Kozlov ]
+ * Russian program translation update (Closes: 824702)
+
+ [ Takuma Yamada ]
+ * Japanese program translation update (Closes: 826291)
+
+ -- Julian Andres Klode <jak@debian.org> Sat, 11 Jun 2016 17:23:19 +0200
+
+apt (1.3~exp1) experimental; urgency=medium
+
+ [ David Kalnischkies ]
+ * make random acquire queues work less random
+ * add dep11 files to default Release patterns
+ * don't ask server if we have entire file in partial/
+ * properly format multiline error messages
+ * format multiline errors properly in acquire progress
+ * show more details for "Hash Sum mismatch" errors
+ * show more details for "Writing more data" errors, too
+ * use the same redirection mirror for all index files
+ * edsp: ask policy engine for the pin of the version directly
+ * give rc-status packages a pin of -1
+ * respect user pinning in M-A:same version (un)screwing
+ * deprecate confusing Pkg.CandVersion() method
+ * factor out Pkg/DepIterator prettyprinters into own header
+ * gpgv: use EXPKEYSIG instead of KEYEXPIRED
+ * gpgv: handle expired sig as worthless
+ * don't show NO_PUBKEY warning if repo is signed by another key
+ (Closes: 618445)
+ * support multiple fingerprints in signed-by
+ * support Signed-By in Release files as a sort of HPKP
+ * bugscript: include all configuration fragment files (Closes: 820861)
+ * move gnupg|gnupg2 from apt Depends to Recommends
+ * warn if apt-key is run unconditionally in maintainerscript
+ * remove 100-levels config nesting limit
+ * let DPKG_COLORS default to our APT::Color setting
+ * allow redirection for items without a space in the desc again
+ * delay progress until Release files are downloaded
+ * download arch:all also for NATIVE_ARCHITECTURE indextargets
+ * implement Fallback-Of for IndexTargets
+ * implement Identifier field for IndexTargets
+ * gpgv: show always webportal error on NODATA (Closes: 823746)
+ * don't sent uninstallable rc-only versions via EDSP
+ * edsp: support generic and solver-specific configs (Closes: 823918)
+
+ [ Julian Andres Klode ]
+ * policy: Get rid of old (pre-1.1) GetCandidateVer algorithm
+ * private-show: Get rid of old policy support code
+ * ftparchive: Support writing Signed-By fields
+ * Strip trailing commas for created signed-by fingerprint lists
+ * update: Run Post-Invoke-Success if not all sources failed
+
+ [ Patrick Cable ]
+ * refactored no_proxy code to work regardless of where https proxy is set
+
+ [ James McCoy ]
+ * deb822: Restore support for <multivalue>-{Add,Remove}
+
+ [ Zhou Mo ]
+ * zh_TW.po: remove several fuzzy tags after review
+
+ [ Adrian Wielgosik ]
+ * Don't copy strings in Startswith, Endswith
+ * Speed up GetLocalitySortedVersionSet.
+
+ [ Frans Spiesschaert ]
+ * Dutch program translation update (Closes: 823976)
+
+ -- Julian Andres Klode <jak@debian.org> Wed, 11 May 2016 10:48:27 +0200
+
+apt (1.2.11) unstable; urgency=medium
+
+ [ David Kalnischkies ]
+ * ensure transaction states are changed only once
+ * stop handling items in doomed transactions.
+ Thanks to Barr Detwix & Vincent Lefevre for log files (Closes: 817240)
+ * do not require non-broken systems in 'upgrade'
+ * detect compressed status files on extension again
+ * recheck Pre-Depends satisfaction in SmartConfigure (LP: #1569099)
+ * fix Alt-Filename handling of file method
+ * allow uncompressed files to be empty in store again
+ * silently skip acquire of empty index files
+ * ensure outdated files are dropped without lists-cleanup
+
+ [ Kelemen Gábor ]
+ * Hungarian program translation update (Closes: 820638)
+
+ -- Julian Andres Klode <jak@debian.org> Mon, 25 Apr 2016 15:23:49 +0200
+
+apt (1.2.10) unstable; urgency=medium
+
+ [ Zhou Mo ]
+ * zh_CN.po: update simplified Chinese translation. (100%)
+
+ [ Julian Andres Klode ]
+ * test-apt-download-progress: Use a larger file for testing
+ * Allow lowering trust level of a hash via config
+
+ [ Michael Vogt ]
+ * Use systemd.timer instead of a cron job (Closes: #600262, #709675, #663290)
+ (LP: #246381, #727685)
+
+ [ David Kalnischkies ]
+ * use buffered writing for InRelease splitting
+
+ [ Takuma Yamada ]
+ * Japanese program translation update (Closes: 819938)
+
+ -- Michael Vogt <mvo@debian.org> Tue, 05 Apr 2016 20:23:47 +0200
+
+apt (1.2.9) unstable; urgency=high
+
+ [ David Kalnischkies ]
+ * drop confusing comma from no strong hash message
+
+ [ Julian Andres Klode ]
+ * Do not mark packages for keep that we want to remove (LP: #1562402)
+ (This fixes some upgrades involving renames where the old package
+ is removed)
+
+ -- Julian Andres Klode <jak@debian.org> Sun, 27 Mar 2016 01:26:51 +0100
+
+apt (1.2.8) unstable; urgency=medium
+
+ [ Michael Vogt ]
+ * Get accurate progress reporting in apt update again
+
+ [ Julian Andres Klode ]
+ * Report non-transient errors as errors, not as warnings
+ * methods/gpgv: Rewrite error handling and message.
+ Thanks to Ron Lee for wording suggestions
+ * Use descriptive URIs in 104 Warning messages
+ * cachefile: Only set members that were initialized successfully
+ (Closes: #818628)
+ * Update symbols file
+
+ [ David Kalnischkies ]
+ * do not strip epochs from state version strings (Closes: 818162)
+ * properly check for "all good sigs are weak" (Closes: 818910)
+ * handle gpgv's weak-digests ERRSIG
+
+ [ Zhou Mo ]
+ * zh_CN.po: update simplified Chinese translation. (Closes: #818639)
+
+ [ Takuma Yamada ]
+ * Japanese manpage translation update (Closes: 818950)
+
+ -- Julian Andres Klode <jak@debian.org> Thu, 24 Mar 2016 19:31:24 +0100
+
+apt (1.2.7) unstable; urgency=medium
+
+ "Caesar is dead"
+
+ [ Frans Spiesschaert ]
+ * Dutch program translation update (Closes: 817060)
+ * Dutch manpages translation update (Closes: 817062)
+
+ [ Julian Andres Klode ]
+ * Use native architecture instead of amd64 for build-dep-purge test
+ * Do not consider SHA1 usable
+ * Test that SHA1-only .diff/Index files are not used
+ * test: Use SHA512 digests for GPG, reject SHA1-based signatures
+ * methods/gpgv: Reject weak digest algorithms
+ * apt-pkg/acquire-worker.cc: Introduce 104 Warning message
+ * methods/gpgv: Warn about SHA1 (and RIPEMD-160)
+
+ [ David Kalnischkies ]
+ * require $(HASH)-Download field in .diff/Index files
+ * flush line-clearing on progress stop before post-invoke (Closes: 793672)
+ * enforce verify of filesize in 'apt-get source'
+
+ [ Manuel "Venturi" Porras Peralta ]
+ * Spanish apt-mark translation fix (Closes: 817999)
+
+ [ Zhou Mo ]
+ * zh_CN.po: fix translation bug. (Closes: #818177)
+
+ [ Michael Vogt ]
+ * Fix bug where the problemresolve can put a pkg into a heisenstate
+ (LP: #1550741)
+
+ -- Julian Andres Klode <jak@debian.org> Tue, 15 Mar 2016 19:20:18 +0100
+
+apt (1.2.6) unstable; urgency=high
+
+ [ Veres Lajos ]
+ * Fix several typos
+
+ [ Julian Andres Klode ]
+ * apt-pkg/algorithms.cc: Avoid stack buffer overflow in KillList
+ (Closes: #701069)
+ * urgency=high because this fixes a stack overflow and the last
+ upload fixed several segfaults and has not migrated yet either.
+
+ -- Julian Andres Klode <jak@debian.org> Mon, 07 Mar 2016 19:49:38 +0100
+
+apt (1.2.5) unstable; urgency=medium
+
+ [ Daniel Kahn Gillmor ]
+ * apt-key del should correctly handle keyids prefixed with 0x
+
+ [ David Kalnischkies ]
+ * support APT::Get::Build-Dep-Automatic again in build-dep
+ * add test for apt-key 0xKEY and use parameter expansion.
+ Thanks to James McCoy for the suggestion. (Closes: 816691)
+ * do not move not-failed pdiff-patches into CWD on failure (Closes: #816837)
+ * get group again after potential remap in Source: parse.
+ Thanks to Francesco Poli and Marc Haber for testdata. (Closes: 812251)
+
+ [ Colin Watson ]
+ * Fix lzma write support to handle "try again" case (Closes: #751688)
+
+ [ Julian Andres Klode ]
+ * Prevent double remapping of iterators and string views
+ * debian/control: Set Standards-Version to 3.9.7
+
+ -- Julian Andres Klode <jak@debian.org> Sun, 06 Mar 2016 19:47:45 +0100
+
+apt (1.2.4) unstable; urgency=medium
+
+ [ David Kalnischkies ]
+ * use local changelog from /usr/share/doc if possible
+ * always download changelogs into /tmp first
+ * pass versioned provides to external solvers in EDSP
+
+ [ Julian Andres Klode ]
+ * Fix maintscript to properly remove 20changelog (Closes: #814754)
+ * Fix crash with empty architecture list (LP: #1549819)
+ * Add missing numeric includes in files using std::accumulate()
+
+ -- Julian Andres Klode <jak@debian.org> Sat, 27 Feb 2016 14:02:47 +0100
+
+apt (1.2.3) unstable; urgency=high
+
+ [ Julian Andres Klode ]
+ * Set seekpos to 0 after reopening files in Seek() (Closes: #812994, #813000)
+
+ [ David Kalnischkies ]
+ * get dpkg lock in build-dep if cache was invalid again (Closes: 814139)
+
+ -- Julian Andres Klode <jak@debian.org> Wed, 10 Feb 2016 18:02:20 +0100
+
+apt (1.2.2) unstable; urgency=medium
+
+ [ David Kalnischkies ]
+ * always create pkg at the time pkg:arch is created
+ * reimplement build-dep via apts normal resolver
+ (Closes: #137560, #444930, #489911, #583914, #728317, #812173)
+ * parse version correctly from binary Source field (Closes: 812492)
+ * get sources for packages in multiple releases again (Closes: 812497)
+ * only warn about missing/invalid Date field for now (Closes: 809329)
+ * support <libc>-<kernel>-<cpu> in architecture specs.
+ Thanks to Bálint Réczey for initial patch (Closes: #812212)
+ * avoid building dependency tree in 'source' command
+
+ [ Stefan Bühler ]
+ * fix "Mismatched free() / delete / delete []" in simple_buffer
+
+ [ Julian Andres Klode ]
+ * Do not buffer writes larger than the buffer if possible
+ * Drop the g++ build-dep, transition is done
+ * NEWS: Prefix the keep deb option with Binary::apt:: (Closes: #812111)
+ * rred: If there were I/O errors, fail
+ * Correctly report write errors when flushing buffered writer
+ * test: Fix apt-key tests to work with current gpg 2.1
+
+ [ Manuel "Venturi" Porras Peralta ]
+ * Spanish program translation update (Closes: 813467)
+
+ [ Adrian Wielgosik ]
+ * Try avoiding loading long package description
+ * Avoid temporary strings in SubstVar.
+
+ [ Fredrik Fornwall ]
+ * edspsystem.cc: include <stdlib.h> for mkdtemp (Closes: #807367)
+
+ -- Julian Andres Klode <jak@debian.org> Thu, 04 Feb 2016 22:50:43 +0100
+