CVE-2011-3634

methods/https.cc in apt before 0.8.11 accepts connections when the certificate host name fails validation and Verify-Host is enabled, which allows man-in-the-middle attackers to obtain repository credentials via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
2.6 UNKNOWN
NETWORK
HIGH
AV:N/AC:H/Au:N/C:P/I:N/A:N
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 37%
VendorProductVersion
debianadvanced_package_tool
𝑥
≤ 0.8.10.3
debianadvanced_package_tool
0.8.0
debianadvanced_package_tool
0.8.0:pre1
debianadvanced_package_tool
0.8.0:pre2
debianadvanced_package_tool
0.8.1
debianadvanced_package_tool
0.8.10
debianadvanced_package_tool
0.8.10.1
debianadvanced_package_tool
0.8.10.2
canonicalubuntu_linux
8.04
canonicalubuntu_linux
10.04
canonicalubuntu_linux
10.10
canonicalubuntu_linux
11.04
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
apt
bullseye
2.2.4
fixed
bookworm
2.6.1
fixed
sid
2.9.10
fixed
trixie
2.9.10
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
apt
oneiric
not-affected
natty
not-affected
maverick
Fixed 0.8.3ubuntu7.3
released
lucid
Fixed 0.7.25.3ubuntu9.9
released
hardy
not-affected
Common Weakness Enumeration
References
http://people.canonical.com/~ubuntu-security/cve/2011/CVE-2011-3634.html
http://www.ubuntu.com/usn/USN-1283-1
https://alioth.debian.org/plugins/scmgit/cgi-bin/gitweb.cgi?p=apt/apt.git%3Ba=blob%3Bf=debian/changelog%3Bhb=HEAD
https://bugs.launchpad.net/ubuntu/+source/apt/+bug/868353
http://people.canonical.com/~ubuntu-security/cve/2011/CVE-2011-3634.html
http://www.ubuntu.com/usn/USN-1283-1
https://alioth.debian.org/plugins/scmgit/cgi-bin/gitweb.cgi?p=apt/apt.git%3Ba=blob%3Bf=debian/changelog%3Bhb=HEAD
https://bugs.launchpad.net/ubuntu/+source/apt/+bug/868353