Vulnerability Database

296,202

Total vulnerabilities in the database

CVE-2012-0954

APT 0.7.x before 0.7.25 and 0.8.x before 0.8.16, when using the apt-key net-update to import keyrings, relies on GnuPG argument order and does not check GPG subkeys, which might allow remote attackers to install altered packages via a man-in-the-middle (MITM) attack. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-3587.

  • Published: Jun 19, 2012
  • Updated: Apr 13, 2023
  • CVE: CVE-2012-0954
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 2.6
  • AV:N/AC:H/Au:N/C:N/I:P/A:N

CWEs:

Software From Fixed in
debian / advanced_package_tool 0.7.0 0.7.0.x
debian / advanced_package_tool 0.7.1 0.7.1.x
debian / advanced_package_tool 0.7.2 0.7.2.x
debian / advanced_package_tool 0.7.2-0.1 0.7.2-0.1.x
debian / advanced_package_tool 0.7.10 0.7.10.x
debian / advanced_package_tool 0.7.11 0.7.11.x
debian / advanced_package_tool 0.7.12 0.7.12.x
debian / advanced_package_tool 0.7.13 0.7.13.x
debian / advanced_package_tool 0.7.14 0.7.14.x
debian / advanced_package_tool 0.7.15-exp1 0.7.15-exp1.x
debian / advanced_package_tool 0.7.15-exp2 0.7.15-exp2.x
debian / advanced_package_tool 0.7.15 0.7.15.x
debian / advanced_package_tool 0.7.15-exp3 0.7.15-exp3.x
debian / advanced_package_tool 0.7.16 0.7.16.x
debian / advanced_package_tool 0.7.17-exp1 0.7.17-exp1.x
debian / advanced_package_tool 0.7.17-exp2 0.7.17-exp2.x
debian / advanced_package_tool 0.7.17-exp3 0.7.17-exp3.x
debian / advanced_package_tool 0.7.17 0.7.17.x
debian / advanced_package_tool 0.7.17-exp4 0.7.17-exp4.x
debian / advanced_package_tool 0.7.18 0.7.18.x
debian / advanced_package_tool 0.7.19 0.7.19.x
debian / advanced_package_tool 0.7.20 0.7.20.x
debian / advanced_package_tool 0.7.20.1 0.7.20.1.x
debian / advanced_package_tool 0.7.20.2 0.7.20.2.x
debian / advanced_package_tool 0.7.21 0.7.21.x
debian / advanced_package_tool 0.7.22 0.7.22.x
debian / advanced_package_tool 0.7.22.1 0.7.22.1.x
debian / advanced_package_tool 0.7.22.2 0.7.22.2.x
debian / advanced_package_tool 0.7.23 0.7.23.x
debian / advanced_package_tool 0.7.23.1 0.7.23.1.x
debian / advanced_package_tool 0.7.24 0.7.24.x
debian / advanced_package_tool 0.8.0-pre1 0.8.0-pre1.x
debian / advanced_package_tool 0.8.0 0.8.0.x
debian / advanced_package_tool 0.8.0-pre2 0.8.0-pre2.x
debian / advanced_package_tool 0.8.1 0.8.1.x
debian / advanced_package_tool 0.8.10 0.8.10.x
debian / advanced_package_tool 0.8.10.1 0.8.10.1.x
debian / advanced_package_tool 0.8.10.2 0.8.10.2.x
debian / advanced_package_tool 0.8.10.3 0.8.10.3.x
debian / advanced_package_tool 0.8.11 0.8.11.x
debian / advanced_package_tool 0.8.11.1 0.8.11.1.x
debian / advanced_package_tool 0.8.11.2 0.8.11.2.x
debian / advanced_package_tool 0.8.11.3 0.8.11.3.x
debian / advanced_package_tool 0.8.11.4 0.8.11.4.x
debian / advanced_package_tool 0.8.11.5 0.8.11.5.x
debian / advanced_package_tool 0.8.12 0.8.12.x
debian / advanced_package_tool 0.8.13 0.8.13.x
debian / advanced_package_tool 0.8.13.1 0.8.13.1.x
debian / advanced_package_tool 0.8.13.2 0.8.13.2.x
debian / advanced_package_tool 0.8.14 0.8.14.x
debian / advanced_package_tool 0.8.14.1 0.8.14.1.x
debian / advanced_package_tool 0.8.15-exp1 0.8.15-exp1.x
debian / advanced_package_tool 0.8.15-exp2 0.8.15-exp2.x
debian / advanced_package_tool 0.8.15 0.8.15.x
debian / advanced_package_tool 0.8.15-exp3 0.8.15-exp3.x
debian / advanced_package_tool 0.8.15.1 0.8.15.1.x
debian / advanced_package_tool 0.8.15.6 0.8.15.6.x
debian / advanced_package_tool 0.8.15.7 0.8.15.7.x
debian / advanced_package_tool 0.8.15.8 0.8.15.8.x
debian / advanced_package_tool 0.8.15.9 0.8.15.9.x
debian / advanced_package_tool 0.8.15.10 0.8.15.10.x