Debian Security Advisory 1779-1 - Two vulnerabilities have been discovered in APT, the well-known dpkg frontend.
666473d9325824b89cca75552369538408ab331e9192631b884e06d1abd17665Ubuntu Security Notice USN-762-1 - Alexandre Martani discovered that the APT daily cron script did not check the return code of the date command. If a machine is configured for automatic updates and is in a time zone where DST occurs at midnight, under certain circumstances automatic updates might not be applied and could become permanently disabled. Michael Casadevall discovered that APT did not properly verify repositories signed with a revoked or expired key. If a repository were signed with only an expired or revoked key and the signature was otherwise valid, APT would consider the repository valid.
975eacfd0addf18325b1120ebc834dbbeaecfaecf5d79a606c1bcac81f2293bb
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed