CVE-2020-15703

Name of the Vulnerable Software and Affected Versions apt (affected versions not specified)

Description The issue is related to the lack of input validation on the Locale property in an apt transaction. This allows an unprivileged user to supply a full path to a writable directory, enabling aptd to read a file as root. By utilizing a symlink, an unprivileged user can determine the existence of any files on the system as root, based on the presence or absence of an error message.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.