CVE-2014-6273

EPSS 0.68%

apt - security update

Published: 9/30/2014Modified: 4/28/2026

Also known as:DEBIAN-CVE-2014-6273

Description

Buffer overflow in the HTTP transport code in apt-get in APT 1.0.1 and earlier allows man-in-the-middle attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted URL.

Affected packages (3)

Debian/aptfrom 0, < 1.0.3
Debian/aptfrom 0, < 0.8.10.3+squeeze5
Debian/aptfrom 0, < 0.9.7.9+deb7u5

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-6273