Lucene search
DebianCVELIST:CVE-2012-0214HistoryApr 15, 2014 - 6:00 p.m.
CVE-2012-0214
2014-04-1518:00:00
debian
www.cve.org
The pkgAcqMetaClearSig::Failed method in apt-pkg/acquire-item.cc in Advanced Package Tool (APT) 0.8.11 through 0.8.15.10 and 0.8.16 before 0.8.16~exp13, when updating from repositories that use InRelease files, allows man-in-the-middle attackers to install arbitrary packages by preventing a user from downloading the new InRelease file, which leaves the original InRelease file active and makes it more difficult to detect that the Packages file is modified and unsigned.
Related
ubuntucve
ubuntucve
CVE-2012-0214
2012-03-06 00:00:00
openvas
openvas
Ubuntu Update for apt USN-1385-1
2012-03-07 00:00:00
Ubuntu: Security Advisory (USN-1385-1)
2012-03-07 00:00:00
ubuntu
ubuntu
APT vulnerability
2012-03-06 00:00:00
debiancve
debiancve
CVE-2012-0214
2014-04-15 23:55:08
nessus
nessus
Ubuntu 11.04 / 11.10 : apt vulnerability (USN-1385-1)
2012-03-07 00:00:00
securityvulns
securityvulns
[USN-1385-1] APT vulnerability
2012-03-10 00:00:00
apt protection bypass
2013-03-24 00:00:00
prion
prion
Code injection
2014-04-15 23:55:00
cve
cve
CVE-2012-0214
2014-04-15 23:55:08
nvd
nvd
CVE-2012-0214
2014-04-15 23:55:08