PT-2014-3653 · Debian+1 · Apt+1

Published

2014-09-16

Updated

2020-01-08

CVE-2014-0487

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions APT versions prior to 1.0.9

Description The issue concerns the failure to verify downloaded files if they have been modified, as indicated by the If-Modified-Since header. This has an unspecified impact and attack vectors.

Recommendations For versions prior to 1.0.9, update to version 1.0.9 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2014-0487

DLA-53-1

DSA-3025-1

USN-2348-1

Affected Products

Apt

Ubuntu

PT-2014-3653 · Debian+1 · Apt+1

CVE-2014-0487

Related Identifiers

Affected Products

References · 20