Aptdaemon Security Vulnerabilities and Issues — Aptdaemon CVE List

Lucene search

Sebastian HeinleinAptdaemon

3 matches found

CVE•added 2011/02/23 7:0 p.m.•52 views

CVE-2011-0725

Absolute path traversal vulnerability in the org.debian.apt.UpdateCachePartially method in worker.py in Aptdaemon 0.40 in Ubuntu 10.10 and 11.04 allows local users to read arbitrary files via a full pathname in the sources_list argument, related to the D-Bus interface.

4.9CVSS6.3AI score0.00054EPSS

CVE•added 2012/06/04 8:55 p.m.•48 views

CVE-2012-0944

Aptdaemon 0.43 and earlier in Ubuntu 11.04, 11.10, and 12.04 LTS does not authenticate packages when the transaction is not simulated, which allows remote attackers to install arbitrary packages via a man-in-the-middle attack.

4.3CVSS6.7AI score0.00475EPSS

CVE•added 2012/12/26 10:55 p.m.•44 views

CVE-2012-0962

Aptdaemon 0.43 in Ubuntu 11.10 and 12.04 LTS uses short IDs when importing PPA GPG keys from a keyserver, which allows remote attackers to install arbitrary package repository GPG keys via a man-in-the-middle (MITM) attack.

4.3CVSS6.6AI score0.00435EPSS