This is quite timely, with the recent discussions on whether apt should use HTTPS; HTTP allows other users on your network to exploit this vulnerability. It has already been fixed in Debian;...
This is quite timely, with the recent discussions on whether apt should use HTTPS; HTTP allows other users on your network to exploit this vulnerability.
Crazy little vulnerability here. My servers were running a bit out of date and would be affected by this. Just rolled out updates to avoid having this bite me in the ass later. Thanks for sharing...
Crazy little vulnerability here. My servers were running a bit out of date and would be affected by this. Just rolled out updates to avoid having this bite me in the ass later.
This is quite timely, with the recent discussions on whether apt should use HTTPS; HTTP allows other users on your network to exploit this vulnerability.
It has already been fixed in Debian; please see https://lists.debian.org/debian-security-announce/2019/msg00010.html before updating.
Crazy little vulnerability here. My servers were running a bit out of date and would be affected by this. Just rolled out updates to avoid having this bite me in the ass later.
Thanks for sharing this!
Consider subscribing to https://lists.debian.org/debian-security-announce/
Oh, fantastic. Subscribed. Thanks for bringing this to my attention :)