From: Marc Deslauriers
Date: 2019年1月22日 週二 下午9:13
Details:
Max Justicz discovered that APT incorrectly handled certain parameters
during redirects. If a remote attacker were able to perform a
man-in-the-middle attack, this flaw could potentially be used to install
altered packages.
References:
https://usn.ubuntu.com/usn/usn-3863-1
CVE-2019-3462
沒有留言:
張貼留言