CVE-2018-0501 Ubuntu Security Notification for APT Vulnerability (USN-3746-1)

漏洞类别:Ubuntu

漏洞等级: 

漏洞信息

It was discovered that APT incorrectly handled the mirror method (mirror://).

漏洞危害

If a remote attacker were able to perform a man-in-the-middle attack, this flaw could potentially be used to install altered packages in environments configured to use mirror:// entries.

解决方案

Refer to Ubuntu advisory USN-3746-1 for affected packages and patching details, or update with your package manager.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

USN-3746-1: 18.04 (bionic) on src (apt)

Leave a Reply