Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Apt vulnerability CVE-2019-3462 #4058

Closed
emkll opened this issue Jan 23, 2019 · 0 comments · Fixed by #4061
Closed

Apt vulnerability CVE-2019-3462 #4058

emkll opened this issue Jan 23, 2019 · 0 comments · Fixed by #4061
Assignees
@emkll
Labels
security
Milestone
0.11.1

Comments

@emkll
Copy link
Contributor

emkll commented Jan 23, 2019

Description

CVE-2019-3462 remote code execution in apt when following redirects:
https://justi.cz/security/2019/01/22/apt-rce.html

This would allow an adversary to execute arbitrary code on the server by exploiting a vulnerability in apt.

  • For apt served over http, this requires an attacker to either compromise the apt server or be in a privileged networked position.

  • For apt served over https, the require must compromise the apt server or be in a privileged network position AND have a valid HTTPS certificate.

deb.torproject.org and apt.freedom.press use https, however, archive.ubuntu.com does not.

Existing installs

Existing installs have already been upgraded to the latest version.

New installs

Before running any apt commands, apt should be updated with -o Acquire::http:AllowRedirect=false
@emkll emkll added the security label Jan 23, 2019
@emkll emkll self-assigned this Jan 23, 2019
@redshiftzero redshiftzero added this to the 0.11.1 milestone Jan 23, 2019
@redshiftzero redshiftzero mentioned this issue Jan 23, 2019
Closed
13 tasks
@emkll emkll mentioned this issue Jan 23, 2019
Merged
11 tasks
eloquence added a commit that referenced this issue Feb 19, 2019
@eloquence
[0.12.0] Remove #4058 from changelog, was in 0.11.1
db960a1
eloquence added a commit that referenced this issue Feb 19, 2019
@eloquence
[0.12.0] Remove #4058 from changelog, was in 0.11.1; fix typo
9120b37
redshiftzero added a commit that referenced this issue Feb 19, 2019
@redshiftzero
Merge pull request #4156 from freedomofpress/docs-changelog-fix
d6e66cf 
[0.12.0] Remove #4058 from changelog, was in 0.11.1; fix typo
@emkll emkll mentioned this issue Feb 26, 2019
Merged
1 task
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@emkll emkll

Labels
security
Projects
None yet
Milestone
0.11.1
2 participants
@redshiftzero @emkll