CVE-2014-0487

EPSS 0.12%

apt - security update

發布日:2014/11/3修改日:2026/4/28

也稱為:DEBIAN-CVE-2014-0487

描述

APT before 1.0.9 does not verify downloaded files if they have been modified as indicated using the If-Modified-Since header, which has unspecified impact and attack vectors.

受影響套件(3)

Debian/aptfrom 0, < 1.0.9
Debian/aptfrom 0, < 0.8.10.3+squeeze3
Debian/aptfrom 0, < 0.9.7.9+deb7u3

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-0487