CVE-2009-1358
21.04.2009, 23:30
apt-get in apt before 0.7.21 does not check for the correct error code from gpgv, which causes apt to treat a repository as valid even when it has been signed with a key that has been revoked or expired, which might allow remote attackers to trick apt into installing malicious repositories.Enginsight
| Vendor | Product | Version |
|---|---|---|
| debian | advanced_package_tool | 𝑥 ≤ 0.7.20 |
| debian | advanced_package_tool | 0.7.0 |
| debian | advanced_package_tool | 0.7.1 |
| debian | advanced_package_tool | 0.7.2 |
| debian | advanced_package_tool | 0.7.2-0.1 |
| debian | advanced_package_tool | 0.7.10 |
| debian | advanced_package_tool | 0.7.11 |
| debian | advanced_package_tool | 0.7.12 |
| debian | advanced_package_tool | 0.7.13 |
| debian | advanced_package_tool | 0.7.14 |
| debian | advanced_package_tool | 0.7.15 |
| debian | advanced_package_tool | 0.7.15:exp1 |
| debian | advanced_package_tool | 0.7.15:exp2 |
| debian | advanced_package_tool | 0.7.15:exp3 |
| debian | advanced_package_tool | 0.7.16 |
| debian | advanced_package_tool | 0.7.17 |
| debian | advanced_package_tool | 0.7.17:exp1 |
| debian | advanced_package_tool | 0.7.17:exp2 |
| debian | advanced_package_tool | 0.7.17:exp3 |
| debian | advanced_package_tool | 0.7.17:exp4 |
| debian | advanced_package_tool | 0.7.18 |
| debian | advanced_package_tool | 0.7.19 |
| debian | advanced_package_tool | 0.7.20.1 |
| debian | advanced_package_tool | 0.7.20.2 |
| debian | advanced_package_tool | 0.7.21 |
| debian | apt | 0.0.1 |
| debian | apt | 0.0.2 |
| debian | apt | 0.0.3 |
| debian | apt | 0.0.4 |
| debian | apt | 0.0.5 |
| debian | apt | 0.0.6 |
| debian | apt | 0.0.7 |
| debian | apt | 0.0.8 |
| debian | apt | 0.0.9 |
| debian | apt | 0.0.10 |
| debian | apt | 0.0.11 |
| debian | apt | 0.0.12 |
| debian | apt | 0.0.13 |
| debian | apt | 0.0.13-bo1 |
| debian | apt | 0.0.14 |
| debian | apt | 0.0.15 |
| debian | apt | 0.0.15-0.1bo |
| debian | apt | 0.0.15-0.2bo |
| debian | apt | 0.0.16-1 |
| debian | apt | 0.0.17-1 |
| debian | apt | 0.1 |
| debian | apt | 0.1.1 |
| debian | apt | 0.1.3 |
| debian | apt | 0.1.5 |
| debian | apt | 0.1.6 |
| debian | apt | 0.1.7 |
| debian | apt | 0.1.9 |
| debian | apt | 0.3.0 |
| debian | apt | 0.3.1 |
| debian | apt | 0.3.2 |
| debian | apt | 0.3.3 |
| debian | apt | 0.3.4 |
| debian | apt | 0.3.6 |
| debian | apt | 0.3.7 |
| debian | apt | 0.3.9 |
| debian | apt | 0.3.11 |
| debian | apt | 0.3.12 |
| debian | apt | 0.3.13 |
| debian | apt | 0.3.14 |
| debian | apt | 0.3.15 |
| debian | apt | 0.3.16 |
| debian | apt | 0.3.17 |
| debian | apt | 0.3.18 |
| debian | apt | 0.3.19 |
| debian | apt | 0.5.0 |
| debian | apt | 0.5.1 |
| debian | apt | 0.5.2 |
| debian | apt | 0.5.3 |
| debian | apt | 0.5.4 |
| debian | apt | 0.5.5 |
| debian | apt | 0.5.5.1 |
| debian | apt | 0.5.6 |
| debian | apt | 0.5.7 |
| debian | apt | 0.5.8 |
| debian | apt | 0.5.9 |
| debian | apt | 0.5.10 |
| debian | apt | 0.5.11 |
| debian | apt | 0.5.12 |
| debian | apt | 0.5.13 |
| debian | apt | 0.5.14 |
| debian | apt | 0.5.15 |
| debian | apt | 0.5.16 |
| debian | apt | 0.5.17 |
| debian | apt | 0.5.18 |
| debian | apt | 0.5.19 |
| debian | apt | 0.5.20 |
| debian | apt | 0.5.21 |
| debian | apt | 0.5.22 |
| debian | apt | 0.5.23 |
| debian | apt | 0.5.24 |
| debian | apt | 0.5.25 |
| debian | apt | 0.5.26 |
| debian | apt | 0.5.27 |
| debian | apt | 0.5.28 |
| debian | apt | 0.5.29 |
| debian | apt | 0.5.30 |
| debian | apt | 0.5.30:ubuntu1 |
| debian | apt | 0.5.30:ubuntu2 |
| debian | apt | 0.5.31 |
| debian | apt | 0.5.32 |
| debian | apt | 0.6.0 |
| debian | apt | 0.6.1 |
| debian | apt | 0.6.2 |
| debian | apt | 0.6.3 |
| debian | apt | 0.6.4 |
| debian | apt | 0.6.5 |
| debian | apt | 0.6.6 |
| debian | apt | 0.6.7 |
| debian | apt | 0.6.8 |
| debian | apt | 0.6.9 |
| debian | apt | 0.6.10 |
| debian | apt | 0.6.11 |
| debian | apt | 0.6.12 |
| debian | apt | 0.6.13 |
| debian | apt | 0.6.14 |
| debian | apt | 0.6.15 |
| debian | apt | 0.6.16 |
| debian | apt | 0.6.17 |
| debian | apt | 0.6.18 |
| debian | apt | 0.6.19 |
| debian | apt | 0.6.20 |
| debian | apt | 0.6.21 |
| debian | apt | 0.6.22 |
| debian | apt | 0.6.23 |
| debian | apt | 0.6.24 |
| debian | apt | 0.6.25 |
| debian | apt | 0.6.27 |
| debian | apt | 0.6.27:ubuntu1 |
| debian | apt | 0.6.27:ubuntu2 |
| debian | apt | 0.6.27:ubuntu3 |
| debian | apt | 0.6.27:ubuntu4 |
| debian | apt | 0.6.28 |
| debian | apt | 0.6.29 |
| debian | apt | 0.6.30 |
| debian | apt | 0.6.31 |
| debian | apt | 0.6.32 |
| debian | apt | 0.6.33 |
| debian | apt | 0.6.34 |
| debian | apt | 0.6.35 |
| debian | apt | 0.6.36 |
| debian | apt | 0.6.36:ubuntu1 |
| debian | apt | 0.6.37 |
| debian | apt | 0.6.38 |
| debian | apt | 0.6.39 |
| debian | apt | 0.6.40 |
| debian | apt | 0.6.40.1 |
| debian | apt | 0.6.41 |
| debian | apt | 0.6.42 |
| debian | apt | 0.6.42.1 |
| debian | apt | 0.6.42.2 |
| debian | apt | 0.6.42.3 |
| debian | apt | 0.6.43 |
| debian | apt | 0.6.43.1 |
| debian | apt | 0.6.43.2 |
| debian | apt | 0.6.43.3 |
| debian | apt | 0.6.44 |
| debian | apt | 0.6.44.1 |
| debian | apt | 0.6.44.1-0.1 |
| debian | apt | 0.6.44.2 |
| debian | apt | 0.6.44.2:exp1 |
| debian | apt | 0.6.45 |
| debian | apt | 0.6.46 |
| debian | apt | 0.6.46.1 |
| debian | apt | 0.6.46.2 |
| debian | apt | 0.6.46.3 |
| debian | apt | 0.6.46.3-0.1 |
| debian | apt | 0.6.46.3-0.2 |
| debian | apt | 0.6.46.4-0.1 |
| debian | apt | 0.7.3 |
| debian | apt | 0.7.4 |
| debian | apt | 0.7.5 |
| debian | apt | 0.7.6 |
| debian | apt | 0.7.7 |
| debian | apt | 0.7.8 |
| debian | apt | 0.7.9 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
References