USN-1215-1: APT vulnerabilities
It was discovered that the apt-key utility incorrectly verified GPG keys when downloaded via the net-update option. If a remote attacker were able to perform a machine-in-the-middle attack, this flaw could potentially be used to install altered packages. This update corrects the issue by disablin...