VYPR
Unrated severityNVD Advisory· Published Nov 3, 2014· Updated Jun 17, 2026

CVE-2014-0489

CVE-2014-0489

Description

APT before 1.0.9, when the Acquire::GzipIndexes option is enabled, does not validate checksums, which allows remote attackers to execute arbitrary code via a crafted package.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:debian:advanced_package_tool:1.0.3:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:debian:advanced_package_tool:1.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:debian:advanced_package_tool:1.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:debian:advanced_package_tool:1.0.7:*:*:*:*:*:*:*
  • Debian/Aptllm-fuzzy
    Range: <1.0.9

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.