漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Packagekit's apt backend lets user install untrusted local packages
Vulnerability Description
PackageKit's apt backend mistakenly treated all local debs as trusted. The apt security model is based on repository trust and not on the contents of individual files. On sites with configured PolicyKit rules this may allow users to install malicious packages.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
Vulnerability Type
特权管理不恰当
Vulnerability Title
PackageKit 安全漏洞
Vulnerability Description
PackageKit是一个适用于Linux系统的新的包管理器。 PackageKit中存在安全漏洞。
CVSS Information
N/A
Vulnerability Type
N/A