This bug was fixed in the package apt - 1.0.1ubuntu2.1
---------------
apt (1.0.1ubuntu2.1) trusty-security; urgency=low
* SECURITY UPDATE: incorrect apt-get source validation (LP: #1329274)
- warn if not authenticated in apt-private/private-download.*,
cmdline/apt-get.cc, added regression test to
test/integration/test-apt-get-source-authenticated.
- CVE-2014-0478
-- Michael Vogt <[email protected]> Thu, 12 Jun 2014 13:57:38 +0200
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1329274
Title:
apt-get source fails to warn on unauthenticated packages
To manage notifications about this bug go to:
https://bugs.launchpad.net/apt/+bug/1329274/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
