[Bug 722228] Re: Information disclosure in org.debian.apt.UpdateCachePartially

kent kentc34 at gmail.com
Fri Sep 7 18:51:12 UTC 2012

** Changed in: aptdaemon (Ubuntu)
     Assignee: Michael Vogt (mvo) => kent (kentc34)

You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to aptdaemon in Ubuntu.

  Information disclosure in org.debian.apt.UpdateCachePartially

Status in “aptdaemon” package in Ubuntu:
  Fix Released
Status in “aptdaemon” source package in Maverick:
  Fix Released
Status in “aptdaemon” source package in Natty:
  Fix Released

Bug description:
  Binary package hint: aptdaemon

  Starting from Ubuntu 10.10 aptdaemon shipped with Ubuntu allows normal
  users to update APT cache without password prompt (because they
  granted PolicyKit's org.debian.apt.update-cache action by default).
  UpdateCachePartially method doesn't check "sources_list" argument
  properly and it's possible to use it for viewing any file in the
  system. See proof-of-concept python script for details.

  How to test: login into normal ubuntu user, and run "python apt-hole
  /etc/shadow" (for example) to see /etc/shadow content.

  ProblemType: Bug
  DistroRelease: Ubuntu 11.04
  Package: python-aptdaemon 0.40+bzr541-0ubuntu2
  ProcVersionSignature: Ubuntu 2.6.38-4.31-generic 2.6.38-rc5
  Uname: Linux 2.6.38-4-generic x86_64
  Architecture: amd64
  Date: Sun Feb 20 20:00:09 2011
  InstallationMedia: Ubuntu 10.04 "Lucid Lynx" - Beta amd64 (20100406.1)
  PackageArchitecture: all
   PATH=(custom, user)
  SourcePackage: aptdaemon

To manage notifications about this bug go to:

More information about the foundations-bugs mailing list