Your submission was sent successfully! Close

CVE-2020-3810

Published: 12 May 2020

Missing input validation in the ar/tar implementations of APT before version 2.1.2 could result in denial of service when processing specially crafted deb files.

Priority

Medium

CVSS 3 base score: 5.5

Status

Package Release Status
apt
Launchpad, Ubuntu, Debian
bionic
Released (1.6.12ubuntu0.1)
eoan
Released (1.9.4ubuntu0.1)
focal
Released (2.0.2ubuntu0.1)
precise
Released (0.8.16~exp12ubuntu10.29)
trusty
Released (1.0.1ubuntu2.24+esm1)
upstream
Released (2.1.2)
xenial
Released (1.2.32ubuntu0.1)