Wind River Support Network

HomeDefectsLIN6-7793

Fixed

LIN6-7793 : Security Advisory - apt - CVE-2014-0478

Created: Jun 29, 2014 Updated: Dec 3, 2018

Resolved Date: Aug 31, 2014

Found In Version: 6.0

Fix Version: 6.0.0.12

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

APT before 1.0.4 does not properly validate source packages, which allows man-in-the-middle attackers to download and install Trojan horse packages by removing the Release signature.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0478

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38