RSS   Vulnerabilities for 'Ubuntu software properties'   RSS

2012-10-10
 
CVE-2012-5356

CWE-20
 

 
The apt-add-repository tool in Ubuntu Software Properties 0.75.x before 0.75.10.3, 0.80.x before 0.80.9.2, 0.81.x before 0.81.13.5, 0.82.x before 0.82.7.3, and 0.92.x before 0.92.8 does not properly check PPA GPG keys imported from a keyserver, which allows remote attackers to install arbitrary package repository GPG keys via a man-in-the-middle (MITM) attack.

 

 >>> Vendor: Canonical 40 Products
Ubuntu linux
Reportbug
Spread
Bazaar
Apparmor
Checkinstall
Ubuntu
Ubuntu enterprise cloud
Accountsservice
PHP5
Ubuntu software properties
Telepathy-idle
Software-properties
Apt-xapian-index
MAAS
Metal as a service
Libpam-modules
Update-manager
Ltsp display manager
Acpi-support
Lxcfs
Ubuntu core
Ubuntu touch
Ubuntu-core-launcher
LXD
Openstack ironic
JUJU
Ubuntu-image
Screen-resolution-extra
Ubuntu download manager
Snapd
Cloud-init
Ubuntu cobbler
Microk8s
C-kernel
Subiquity
Ubuntu-ui-toolkit
Remote-login-service
Courier-authlib
Multipass


Copyright 2024, cxsecurity.com

 

Back to Top