The pkgAcqMetaClearSig::Failed method in apt-pkg/acquire-item.cc in Advanced Package Tool (APT) 0.8.11 through 0.8.15.10 and 0.8.16 before 0.8.16~exp13, when updating from repositories that use InRelease files, allows man-in-the-middle attackers to install arbitrary packages by preventing a user from downloading the new InRelease file, which leaves the original InRelease file active and makes it more difficult to detect that the Packages file is modified and unsigned.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Advanced_package_tool | Advanced_package_tool | * | 0.8.16~exp12 (including) |
| Advanced_package_tool | Advanced_package_tool | 0.8.11 (including) | 0.8.11 (including) |
| Advanced_package_tool | Advanced_package_tool | 0.8.12 (including) | 0.8.12 (including) |
| Advanced_package_tool | Advanced_package_tool | 0.8.13 (including) | 0.8.13 (including) |
| Advanced_package_tool | Advanced_package_tool | 0.8.14 (including) | 0.8.14 (including) |
| Advanced_package_tool | Advanced_package_tool | 0.8.15 (including) | 0.8.15 (including) |
| Apt | Ubuntu | devel | * |
| Apt | Ubuntu | natty | * |
| Apt | Ubuntu | oneiric | * |