Download
| Alert*
oval:org.secpod.oval:def:703400
apt: Advanced front-end for dpkg An attacker could trick APT into installing altered packages. oval:org.secpod.oval:def:602695 Jann Horn of Google Project Zero discovered that APT, the high level package manager, does not properly handle errors when validating signatures on InRelease files. An attacker able to man-in-the-middle HTTP requests to an apt repository that uses InRelease files , can take advantage of this flaw to ... oval:org.secpod.oval:def:51691 apt: Advanced front-end for dpkg An attacker could trick APT into installing altered packages. |