The dpkg-source command in Debian dpkg before 1.16.16 and 1.17.x before 1.17.25 allows remote attackers to bypass signature verification via a crafted Debian source control file (.dsc).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | dpkg | < 1.17.25 | dpkg_1.17.25_all.deb |
Debian | 11 | all | dpkg | < 1.17.25 | dpkg_1.17.25_all.deb |
Debian | 10 | all | dpkg | < 1.17.25 | dpkg_1.17.25_all.deb |
Debian | 999 | all | dpkg | < 1.17.25 | dpkg_1.17.25_all.deb |
Debian | 13 | all | dpkg | < 1.17.25 | dpkg_1.17.25_all.deb |