[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248364

 
 

909

 
 

195388

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2009-1300Date: (C)2009-04-16   (M)2023-12-22


apt 0.7.20 does not check when the date command returns an "invalid date" error, which can prevent apt from loading security updates in time zones for which DST occurs at midnight.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 10.0
Exploit Score: 10.0
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SECUNIA-34829
SECUNIA-34832
SECUNIA-34874
DSA-1779
USN-762-1
http://www.openwall.com/lists/oss-security/2009/04/08/11
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=523213
https://bugs.launchpad.net/ubuntu/+source/coreutils/+bug/354793

CWE    1
CWE-20
OVAL    3
oval:org.mitre.oval:def:8263
oval:org.secpod.oval:def:700326
oval:org.secpod.oval:def:600346

© SecPod Technologies