[Bug 820638] [NEW] Muon defaults insecure

Scott Kitterman ubuntu at kitterman.com
Wed Aug 3 22:21:24 UTC 2011


*** This bug is a security vulnerability ***

Public security bug reported:

Muon defaults to allowing untrusted packages.  This is very bad and must
be fixed.

vim muon/config/GeneralSettingsPage.cpp +106

m_untrustedCheckBox->setChecked(m_aptConfig->readEntry("APT::Get::AllowUnauthenticated",
true));

** Affects: muon (Ubuntu)
     Importance: Critical
         Status: Triaged

** Affects: muon (Ubuntu Oneiric)
     Importance: Critical
         Status: Triaged


** Tags: iso-testing

** Visibility changed to: Public

** Changed in: muon (Ubuntu)
       Status: New => Triaged

** Changed in: muon (Ubuntu)
   Importance: Undecided => Critical

** Changed in: muon (Ubuntu)
    Milestone: None => oneiric-alpha-3

** Also affects: muon (Ubuntu Oneiric)
   Importance: Critical
       Status: Triaged

-- 
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to muon in Ubuntu.
https://bugs.launchpad.net/bugs/820638

Title:
  Muon defaults insecure

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/muon/+bug/820638/+subscriptions



More information about the kubuntu-bugs mailing list