Lucene search
UbuntuUSN-1414-1HistoryApr 02, 2012 - 12:00 a.m.
Aptdaemon vulnerability
2012-04-0200:00:00
ubuntu.com
20
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
6.4 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
73.0%
Releases
- Ubuntu 11.10
- Ubuntu 11.04
Packages
- aptdaemon - transaction based package management service
Details
It was discovered that Aptdaemon incorrectly handled installing packages
without performing a transaction simulation. An attacker could possibly use
this flaw to install altered packages.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 11.10 | noarch | python-aptdaemon | < 0.43+bzr697-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 11.10 | noarch | aptdaemon | < 0.43+bzr697-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 11.10 | noarch | aptdaemon-data | < 0.43+bzr697-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 11.10 | noarch | python-aptdaemon-gtk | < 0.43+bzr697-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 11.10 | noarch | python-aptdaemon.gtk3widgets | < 0.43+bzr697-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 11.10 | noarch | python-aptdaemon.gtkwidgets | < 0.43+bzr697-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 11.10 | noarch | python-aptdaemon.test | < 0.43+bzr697-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 11.04 | noarch | python-aptdaemon | < 0.41+bzr661-0ubuntu0.2 | UNKNOWN |
| Ubuntu | 11.04 | noarch | aptdaemon | < 0.41+bzr661-0ubuntu0.2 | UNKNOWN |
| Ubuntu | 11.04 | noarch | aptdaemon-data | < 0.41+bzr661-0ubuntu0.2 | UNKNOWN |
References
Related
cve
cve
CVE-2012-0944
2012-06-04 20:55:02
openvas
openvas
Ubuntu: Security Advisory (USN-1414-1)
2012-04-05 00:00:00
Ubuntu Update for aptdaemon USN-1414-1
2012-04-05 00:00:00
prion
prion
Code injection
2012-06-04 20:55:00
nessus
nessus
Ubuntu 11.04 / 11.10 : aptdaemon vulnerability (USN-1414-1)
2012-04-03 00:00:00
cvelist
cvelist
CVE-2012-0944
2012-06-04 20:00:00
ubuntucve
ubuntucve
CVE-2012-0944
2012-04-02 00:00:00
nvd
nvd
CVE-2012-0944
2012-06-04 20:55:02
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
6.4 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
73.0%
Related for USN-1414-1