Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
UbuntuPython-apt

3 matches found

CVE
CVEadded 2020/03/26 1:0 p.m.106 views

CVE-2019-15796

CVE-2019-15796 affects the Python-apt package where Version.fetch_binary(), Version.fetch_source(), and _fetch_archives() did not verify signed hashes in versions up to 1.9.3ubuntu2, enabling downloads from unsigned repositories. The issue has been fixed in versions 1.9.5, 1.9.0ubuntu1.2, 1.6.5ub...

4.7CVSS4.6AI score0.00496EPSS
CVE
CVEadded 2020/03/26 1:0 p.m.97 views

CVE-2019-15795

The CVE concerns python-apt (apt/package.py) where MD5 hashes were used to validate downloaded files in Version.fetch_binary() and Version.fetch_source(), affecting 1.9.0ubuntu1 and earlier. This trust gap creates a potential MITM path to install altered packages. The issue is resolved in fixed r...

4.7CVSS4.4AI score0.0044EPSS
CVE
CVEadded 2025/12/05 12:59 p.m.24 views

CVE-2025-6966

CVE-2025-6966 is a vulnerability in Python-apt on APT-based Linux systems caused by a NULL pointer dereference in TagSection.keys() when processing deb822 files with malformed non-UTF-8 keys. It can lead to a local denial of service (process crash). The issue is reported across multiple distribut...

6.9CVSS5.9AI score0.00122EPSS