Description
The GUI for aptlinex before 0.91 does not sufficiently warn the user of potentially dangerous actions, which allows remote attackers to remove or modify packages via an apt:// URL.
Affected products
- Debian / aptlinex0.6-1 – 0.6-1
- Debian / aptlinex0.7-1 – 0.7-1
- Debian / aptlinex0.8-1 – 0.8-1
- Debian / aptlinex0.8-2 – 0.8-2
- Debian / aptlinex0.9-1 – 0.9-1