Unrated severityNVD Advisory· Published Dec 26, 2012· Updated Apr 29, 2026

CVE-2012-0961

Description

Apt 0.8.16~exp5ubuntu13.x before 0.8.16~exp5ubuntu13.6, 0.8.16~exp12ubuntu10.x before 0.8.16~exp12ubuntu10.7, and 0.9.7.5ubuntu5.x before 0.9.7.5ubuntu5.2, as used in Ubuntu, uses world-readable permissions for /var/log/apt/term.log, which allows local users to obtain sensitive shell information by reading the log file.

Affected products

Debian/Advanced Package Tool
cpe:2.3:a:debian:advanced_package_tool:0.8.16:*:*:*:*:*:*:*
Debian/Apt
cpe:2.3:a:debian:apt:0.9.7:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.ubuntu.com/usn/USN-1662-1nvdPatchVendor Advisory
secunia.com/advisories/51568nvdVendor Advisory
osvdb.org/88380nvd
www.securityfocus.com/bid/56917nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000