Racb

**Name of the Vulnerable Software and Affected Versions** Simple Streams (simplestreams) (affected versions not specified) **Description** The issue is related to the improper verification of GPG signatures of disk image files. This allows remote mirror servers to spoof disk images, potentially having other unspecified impacts, via a 403 response. The vulnerability can be exploited by a remote attacker using a mirror server to substitute disk images. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.