USN-4359-1: APT vulnerability
14 May 2020
APT could be made to crash if it opened a specially crafted file.
- apt - Advanced front-end for dpkg
It was discovered that APT incorrectly handled certain filenames during
package installation. If an attacker could provide a specially crafted
package to be installed by the system administrator, this could cause APT
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.
- USN-4359-2: apt, apt-transport-https, libapt-pkg-dev, apt-doc, libapt-pkg-doc, libapt-inst1.5, libapt-inst1.4, apt-utils, libapt-pkg4.12