Ubuntu Update For Apt USN-1385-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-1385-1

Solution

Please Install the Updated Packages.

Insight

Simon Ruderich discovered that APT incorrectly handled repositories that use InRelease files. The default Ubuntu repositories do not use InRelease files, so this issue only affected third-party repositories. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could potentially be used to install altered packages.

Affected

apt on Ubuntu 11.04

Severity

Classification

CVE CVE-2012-0214
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Ubuntu Update for cinder USN-2248-1
Ubuntu Update for cpio USN-2456-1
Ubuntu Update for cinder USN-2005-1
Ubuntu Update for apache2 USN-1259-1
Ubuntu Update for clamav USN-1482-3

Ubuntu Update for apt USN-1385-1

Take action and discover your vulnerabilities