Lucene search
CanonicalCVELIST:CVE-2011-1829HistoryJul 27, 2011 - 1:29 a.m.
CVE-2011-1829
2011-07-2701:29:00
canonical
www.cve.org
APT before 0.8.15.2 does not properly validate inline GPG signatures, which allows man-in-the-middle attackers to install modified packages via vectors involving lack of an initial clearsigned message.
References
launchpadlibrarian.net/75126628/apt_0.8.13.2ubuntu2_0.8.13.2ubuntu4.1.diff.gz
packages.debian.org/changelogs/pool/main/a/apt/current/changelog
www.securityfocus.com/bid/48671
www.ubuntu.com/usn/USN-1169-1
exchange.xforce.ibmcloud.com/vulnerabilities/68560
launchpad.net/bugs/784473
launchpad.net/ubuntu/+archive/primary/+sourcepub/1817196/+listing-archive-extra
Related
securityvulns
securityvulns
apt GPG signature check vulnerability
2011-07-14 00:00:00
[USN-1169-1] APT vulnerability
2011-07-14 00:00:00
prion
prion
Code injection
2011-07-27 02:55:00
cve
cve
CVE-2011-1829
2011-07-27 02:55:01
debiancve
debiancve
CVE-2011-1829
2011-07-27 02:55:01
ubuntu
ubuntu
APT vulnerability
2011-07-13 00:00:00
nessus
nessus
Ubuntu 11.04 : apt vulnerability (USN-1169-1)
2011-07-14 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-1169-1)
2011-07-18 00:00:00
Ubuntu Update for apt USN-1169-1
2011-07-18 00:00:00
nvd
nvd
CVE-2011-1829
2011-07-27 02:55:01
ubuntucve
ubuntucve
CVE-2011-1829
2011-07-13 00:00:00