APT vulnerability

2014-06-17T00:00:00
ID USN-2246-1
Type ubuntu
Reporter Ubuntu
Modified 2014-06-17T00:00:00

Description

Jakub Wilk discovered that APT did not correctly validate signatures when
downloading source packages. If a remote attacker were able to perform a
man-in-the-middle attack, this flaw could potentially be used to install
altered source packages.