aptdaemon: man-in-the-middle attack
| Package(s): | aptdaemon | CVE #(s): | CVE-2012-0962 | ||||
| Created: | December 17, 2012 | Updated: | December 19, 2012 | ||||
| Description: | From the Ubuntu advisory:
It was discovered that Aptdaemon incorrectly validated PPA GPG keys when importing from a keyserver. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to install altered package repository GPG keys. | ||||||
| Alerts: |
| ||||||