Publishing details

• Created on 2020-12-17 by Ubuntu Archive Auto-Sync
• Removal requested on 2022-07-23.
• Published on 2020-12-17

Changelog

aptdaemon (1.1.1+bzr982-0ubuntu36) hirsute; urgency=medium

  * SECURITY UPDATE: info disclosure via transaction properties
    (LP: #1899513)
    - debian/patches/CVE-2020-16128.patch: drop privileges when doing file
      checks in aptdaemon/core.py, aptdaemon/worker/aptworker.py,
      aptdaemon/utils.py.
    - CVE-2020-16128
  * SECURITY UPDATE: policykit checks are too late (LP: #1899193)
    - debian/patches/CVE-2020-27349.patch: check PolicyKit before
      simulating local install in aptdaemon/core.py.
    - CVE-2020-27349

 -- Marc Deslauriers <email address hidden>  Fri, 11 Dec 2020 09:49:56 -0500

Builds

• amd64

Package files

• aptdaemon-data_1.1.1+bzr982-0ubuntu36_all.deb (156.0 KiB)
• aptdaemon_1.1.1+bzr982-0ubuntu36.debian.tar.xz (49.5 KiB)
• aptdaemon_1.1.1+bzr982-0ubuntu36.dsc (2.8 KiB)
• aptdaemon_1.1.1+bzr982-0ubuntu36_all.deb (12.5 KiB)
• aptdaemon_1.1.1+bzr982.orig.tar.gz (1.2 MiB)
• python3-aptdaemon.gtk3widgets_1.1.1+bzr982-0ubuntu36_all.deb (12.8 KiB)
• python3-aptdaemon.test_1.1.1+bzr982-0ubuntu36_all.deb (82.8 KiB)
• python3-aptdaemon_1.1.1+bzr982-0ubuntu36_all.deb (74.7 KiB)