Aptdaemon 0.43 and previous versions in Ubuntu 11.04, 11.10, and 12.04 LTS does not authenticate packages when the transaction is not simulated, which allows remote malicious users to install arbitrary packages via a man-in-the-middle attack.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
sebastian heinlein aptdaemon 0.34 |
||
sebastian heinlein aptdaemon 0.33 |
||
canonical ubuntu linux 12.04 |
||
sebastian heinlein aptdaemon 0.32 |
||
sebastian heinlein aptdaemon 0.31 |
||
sebastian heinlein aptdaemon 0.41 |
||
sebastian heinlein aptdaemon 0.40 |
||
canonical ubuntu linux 11.04 |
||
canonical ubuntu linux 11.10 |
||
sebastian heinlein aptdaemon |
||
sebastian heinlein aptdaemon 0.30 |
||
sebastian heinlein aptdaemon 0.20 |
Vulmon