Lucene search
HistoryApr 16, 2009 - 3:12 p.m.
CVE-2009-1300
cve-2009-1300
apt 0.7.20
date command
dst
security updates
6.4 Medium
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.007 Low
EPSS
Percentile
80.9%
apt 0.7.20 does not check when the date command returns an “invalid date” error, which can prevent apt from loading security updates in time zones for which DST occurs at midnight.
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian:advanced_package_tool | debian advanced package tool | eq | 0.7.20 |
References
Related
openvas
openvas
Ubuntu USN-762-1 (apt)
2009-04-28 00:00:00
Ubuntu: Security Advisory (USN-762-1)
2009-04-28 00:00:00
Debian Security Advisory DSA 1779-1 (apt)
2009-05-05 00:00:00
prion
prion
Command injection
2009-04-16 15:12:00
nessus
nessus
Ubuntu 6.06 LTS / 8.04 LTS / 8.10 : apt vulnerabilities (USN-762-1)
2009-04-23 00:00:00
Debian DSA-1779-1 : apt - several vulnerabilities
2009-04-27 00:00:00
cvelist
cvelist
CVE-2009-1300
2009-04-16 15:00:00
ubuntucve
ubuntucve
CVE-2009-1300
2009-04-16 00:00:00
debiancve
debiancve
CVE-2009-1300
2009-04-16 15:12:00
securityvulns
securityvulns
[USN-762-1] APT vulnerabilities
2009-04-21 00:00:00
apt multiple security vulnerabilities
2009-04-21 00:00:00
ubuntu
ubuntu
APT vulnerabilities
2009-04-20 00:00:00
osv
osv
apt - several vulnerabilities
2009-04-26 00:00:00
debian
debian
[SECURITY] [DSA 1779-1] New apt packages fix several vulnerabilities
2009-04-26 15:36:14
6.4 Medium
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.007 Low
EPSS
Percentile
80.9%
Related for CVE-2009-1300