82 matches found
EUVD-2020-8094
Malware in sbrugna...
EUVD-2020-19861
Malware in sbrugna...
EUVD-2012-0985
Malware in sbrugna...
EUVD-2011-0739
Malware in sbrugna...
EUVD-2012-0967
Malware in sbrugna...
EUVD-2015-1464
Malware in sbrugna...
CVE-2012-0962
Aptdaemon 0.43 in Ubuntu 11.10 and 12.04 LTS uses short IDs when importing PPA GPG keys from a keyserver, which allows remote attackers to install arbitrary package repository GPG keys via a man-in-the-middle MITM attack...
Debian: Security Advisory (DLA-261-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
GHSA-WPMR-Q825-X4C6 aptdaemon Information Disclosure via Improper Input Validation in Transaction class
There is no input validation on the Locale property in an apt transaction. An unprivileged user can supply a full path to a writable directory, which lets aptd read a file as root. Having a symlink in place results in an error message if the file exists, and no error otherwise. This way an...
aptdaemon Information Disclosure via Improper Input Validation in Transaction class
There is no input validation on the Locale property in an apt transaction. An unprivileged user can supply a full path to a writable directory, which lets aptd read a file as root. Having a symlink in place results in an error message if the file exists, and no error otherwise. This way an...
Denial Of Service (DoS)
aptdaemon is vulnerable to denial of service DoS. The vulnerability exists as policykit checks are too late...
Information Disclosure
aptdaemon is vulnerable to information disclosure. An attacker is able to view file existence by setting Terminal/DebconfSocket properties...
CVE-2020-16128
The aptdaemon DBus interface disclosed file existence disclosure by setting Terminal/DebconfSocket properties, aka GHSL-2020-192 and GHSL-2020-196. This affected versions prior to 1.1.1+bzr982-0ubuntu34.1, 1.1.1+bzr982-0ubuntu32.3, 1.1.1+bzr982-0ubuntu19.5, 1.1.1+bzr982-0ubuntu14.5...
CVE-2020-27349
Aptdaemon performed policykit checks after interacting with potentially untrusted files with elevated privileges. This affected versions prior to 1.1.1+bzr982-0ubuntu34.1, 1.1.1+bzr982-0ubuntu32.3, 1.1.1+bzr982-0ubuntu19.5, 1.1.1+bzr982-0ubuntu14.5...
CVE-2020-27349
Aptdaemon performed policykit checks after interacting with potentially untrusted files with elevated privileges. This affected versions prior to 1.1.1+bzr982-0ubuntu34.1, 1.1.1+bzr982-0ubuntu32.3, 1.1.1+bzr982-0ubuntu19.5, 1.1.1+bzr982-0ubuntu14.5...
Design/Logic Flaw
The aptdaemon DBus interface disclosed file existence disclosure by setting Terminal/DebconfSocket properties, aka GHSL-2020-192 and GHSL-2020-196. This affected versions prior to 1.1.1+bzr982-0ubuntu34.1, 1.1.1+bzr982-0ubuntu32.3, 1.1.1+bzr982-0ubuntu19.5, 1.1.1+bzr982-0ubuntu14.5...
CVE-2020-27349 aptdaemon performed policykit permissions checks too late
Aptdaemon performed policykit checks after interacting with potentially untrusted files with elevated privileges. This affected versions prior to 1.1.1+bzr982-0ubuntu34.1, 1.1.1+bzr982-0ubuntu32.3, 1.1.1+bzr982-0ubuntu19.5, 1.1.1+bzr982-0ubuntu14.5...
CVE-2020-27349
Apt-daemon (aptdaemon) vulnerability CVE-2020-27349 affects Ubuntu runtimes and is described as: Aptdaemon performed policykit checks after interacting with potentially untrusted files with elevated privileges, with affected package versions listed as 1.1.1+bzr982-0ubuntu14.5 up to 1.1.1+bzr982-0...
CVE-2020-16128
Aptdaemon’s DBus interface is disclosed to reveal file existence by manipulating Terminal/DebconfSocket properties (GHSL-2020-192/196). This affects Ubuntu packages prior to aptdaemon 1.1.1+bzr982-0ubuntu34.1 (and earlier 0ubuntu32.3, 0ubuntu19.5, 0ubuntu14.5). Vulnerability CVE-2020-16128 is a l...
CVE-2020-16128 Aptdaemon error messages disclosed file existence to unprivileged users via dbus properties
The aptdaemon DBus interface disclosed file existence disclosure by setting Terminal/DebconfSocket properties, aka GHSL-2020-192 and GHSL-2020-196. This affected versions prior to 1.1.1+bzr982-0ubuntu34.1, 1.1.1+bzr982-0ubuntu32.3, 1.1.1+bzr982-0ubuntu19.5, 1.1.1+bzr982-0ubuntu14.5...