Debian: >> Advanced Package Tool >> 1.0.3 Security Vulnerabilities
APT before 1.0.4 does not properly validate source packages, which allows man-in-the-middle attackers to download and install Trojan horse packages by removing the Release signature.
CVSS Score
4.0
EPSS Score
0.002
Published
2014-06-17
Page 2