2019-11-25 23:13:02
redhat
PUBLISHED
It was found that apt-key in apt, all versions, do not correctly validate gpg keys with the master keyring, leading to a potential man-in-the-middle attack.