CVE-2012-0944
Apt daemon (Aptdaemon) versions 0.43 and earlier on Ubuntu 11.04, 11.10, and 12.04 LTS do not authenticate packages when a transaction is not simulated, enabling a remote attacker to install arbitrary packages via a man-in-the-middle attack. The vulnerability is caused by insufficient authenticat...