Ubuntu
update-notifier package

  1. Hardy (8.04)
  2. Bug #881548
  3. Comment #4

Comment 4 for bug 881548

Revision history for this message
Michael Vogt (mvo) wrote :

The previous patch is not sufficient. This new one fixes a additional MitM attack where a attacker can
give a modified meta-release file to bypass the authentication. This makes the previous one obsolete.