歡迎光臨
我們一直在努力

Remote Code Execution in apt/apt-get

原文地址:https://justi.cz/security/2019/01/22/apt-rce.html

tl;dr I found a vulnerability in apt that allows a network man-in-the-middle (or a malicious package mirror) to execute arbitrary code as root on a machine installing any package. The bug has been fixed in the latest versions of apt. If you’re worried about being exploited during the update process, you can protect yourself by disabling HTTP redirects while you update.

前言引用來源:https://justi.cz/security/2019/01/22/apt-rce.html
文章圖片來源:https://justi.cz/security/2019/01/22/apt-rce.html

-------------------
如果你認同我們每日分享的文章,請幫我們按個讚並且點擊追蹤「搶先看」,讓我們提供最新消息給您!您的分享及點讚,是我們持續推廣資訊安全最大的動力來源。
https://www.facebook.com/LonelyPoPo/

贊(0) 打賞
轉載請附上作者連結:波波的寂寞世界 » Remote Code Execution in apt/apt-get

波波的寂寞世界

Facebook聯繫我們

覺得文章有用,請作者喝杯咖啡

掃一掃打賞作者狗糧