CVE-2020-3810

Priority
Description
Missing input validation in the ar/tar implementations of APT before
version 2.1.2 could result in denial of service when processing specially
crafted deb files.
Assigned-to
amurray
Notes
Package
Source: apt (LP Ubuntu Debian)
Upstream:released (2.1.2)
Ubuntu 12.04 ESM (Precise Pangolin):released (0.8.16~exp12ubuntu10.29)
Ubuntu 14.04 ESM (Trusty Tahr):released (1.0.1ubuntu2.24+esm1)
Ubuntu 16.04 LTS (Xenial Xerus):released (1.2.32ubuntu0.1)
Ubuntu 18.04 LTS (Bionic Beaver):released (1.6.12ubuntu0.1)
Ubuntu 19.10 (Eoan Ermine):released (1.9.4ubuntu0.1)
Ubuntu 20.04 LTS (Focal Fossa):released (2.0.2ubuntu0.1)
Ubuntu 20.10 (Groovy Gorilla):pending (2.1.2)
More Information

Updated: 2020-05-29 19:17:14 UTC (commit 2d0d387aa141e969cc1ddbb230ab2faa3ee568d5)