Thank you for using Ubuntu and reporting a bug. While the situation you
describe is certainly, installing malicious packages can do much more
since the maintainer script run as root on the system. This problem is
well understood and just like you shouldn't run untrusted binaries on
your system, you shouldn't install untrusted packages. Thanks again for
the report.
** Changed in: dpkg (Ubuntu)
Status: New => Won't Fix
** Visibility changed to: Public
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1037614
Title:
Possible DoS attack via seemingly benign packages
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/dpkg/+bug/1037614/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
