CVE-2013-1051 Information

Description

apt 0.8.16 0.9.7 and possibly other versions does not properly handle InRelease files which allows man-in-the-middle attackers to modify packages before installation via unknown vectors possibly related to integrity checking and the use of third-party repositories.

Reference

http://osvdb.org/91428 http://secunia.com/advisories/52633 http://www.ubuntu.com/usn/USN-1762-1