CVE-2015-0840
published 2015-04-13CVE-2015-0840: The dpkg-source command in Debian dpkg before 1.16.16 and 1.17.x before 1.17.25 allows remote attackers to bypass signature verification via a crafted Debian…
PriorityP427medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EPSS
1.84%
76.3th percentile
The dpkg-source command in Debian dpkg before 1.16.16 and 1.17.x before 1.17.25 allows remote attackers to bypass signature verification via a crafted Debian source control file (.dsc).
Affected
35 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | dpkg | < dpkg 1.17.25 (bookworm) | dpkg 1.17.25 (bookworm) |
| debian | dpkg | <= 1.16.15 | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
| debian | dpkg | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
osv4.3MEDIUM
vendor_debian4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-mrx8-xmg2-v94q: The dpkg-source command in Debian dpkg before 1
ghsa_unreviewed·2022-05-17
CVE-2015-0840 [MEDIUM] CWE-284 GHSA-mrx8-xmg2-v94q: The dpkg-source command in Debian dpkg before 1
The dpkg-source command in Debian dpkg before 1.16.16 and 1.17.x before 1.17.25 allows remote attackers to bypass signature verification via a crafted Debian source control file (.dsc).
OSV
CVE-2015-0840: The dpkg-source command in Debian dpkg before 1
osv·2015-04-13·CVSS 4.3
CVE-2015-0840 [MEDIUM] CVE-2015-0840: The dpkg-source command in Debian dpkg before 1
The dpkg-source command in Debian dpkg before 1.16.16 and 1.17.x before 1.17.25 allows remote attackers to bypass signature verification via a crafted Debian source control file (.dsc).
Ubuntu
dpkg vulnerability
vendor_ubuntu·2015-04-09
CVE-2015-0840 dpkg vulnerability
Title: dpkg vulnerability
Summary: dpkg could be tricked into bypassing source package signature checks.
Jann Horn discovered that dpkg incorrectly validated signatures when
extracting local source packages. If a user or an automated system were
tricked into unpacking a specially crafted source package, a remote
attacker could bypass signature verification checks.
Instructions: In general, a standard system update will make all the necessary changes.
Debian
CVE-2015-0840: dpkg - The dpkg-source command in Debian dpkg before 1.16.16 and 1.17.x before 1.17.25 ...
vendor_debian·2015·CVSS 4.3
CVE-2015-0840 [MEDIUM] CVE-2015-0840: dpkg - The dpkg-source command in Debian dpkg before 1.16.16 and 1.17.x before 1.17.25 ...
The dpkg-source command in Debian dpkg before 1.16.16 and 1.17.x before 1.17.25 allows remote attackers to bypass signature verification via a crafted Debian source control file (.dsc).
Scope: local
bookworm: resolved (fixed in 1.17.25)
bullseye: resolved (fixed in 1.17.25)
forky: resolved (fixed in 1.17.25)
sid: resolved (fixed in 1.17.25)
trixie: resolved (fixed in 1.17.25)
No detection rules found.
No public exploits indexed.
Bugzilla
python-debian: GPG keys verification bypass (similar to CVE-2015-0840) [fedora-all]
bugzilla·2015-04-10·CVSS 4.3
CVE-2015-0840 [MEDIUM] python-debian: GPG keys verification bypass (similar to CVE-2015-0840) [fedora-all]
python-debian: GPG keys verification bypass (similar to CVE-2015-0840) [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versio
Bugzilla
CVE-2015-0840 dpkg: source package integrity verification bypass [fedora-all]
bugzilla·2015-04-10·CVSS 4.3
CVE-2015-0840 [MEDIUM] CVE-2015-0840 dpkg: source package integrity verification bypass [fedora-all]
CVE-2015-0840 dpkg: source package integrity verification bypass [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of
Bugzilla
CVE-2015-0840 dpkg: source package integrity verification bypass [epel-all]
bugzilla·2015-04-10·CVSS 4.3
CVE-2015-0840 [MEDIUM] CVE-2015-0840 dpkg: source package integrity verification bypass [epel-all]
CVE-2015-0840 dpkg: source package integrity verification bypass [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions
Bugzilla
python-debian: GPG keys verification bypass (similar to CVE-2015-0840) [epel-all]
bugzilla·2015-04-10·CVSS 4.3
CVE-2015-0840 [MEDIUM] python-debian: GPG keys verification bypass (similar to CVE-2015-0840) [epel-all]
python-debian: GPG keys verification bypass (similar to CVE-2015-0840) [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported ver
Bugzilla
python-debian: GPG keys verification bypass (similar to CVE-2015-0840)
bugzilla·2015-04-10·CVSS 4.3
CVE-2015-0840 [MEDIUM] python-debian: GPG keys verification bypass (similar to CVE-2015-0840)
python-debian: GPG keys verification bypass (similar to CVE-2015-0840)
From https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=782276:
"""
While dealing with the dpkg security issue (fixed in 1.16.16, and the
upcoming 1.17.25), I checked other implementations and found that it
also affects the python-debian modules.
The parser is too lax and accepts any whitespace while GnuPG only
accepts [\r\t ] at the end of an Armor Header line, which means that a
message could be doctored to include lines that will be ignored by GnuPG
but parsed by the python-debian modules.
"""
This issue is similar to bug 1210748, the patch is attached to the Debian bug.
Discussion:
Created python-debian tracking bugs for this issue:
Affects: fedora-all [bug 1210758]
Affects: epel-all [bug 1210759]
---
Created
Bugzilla
CVE-2015-0840 dpkg: source package integrity verification bypass
bugzilla·2015-04-10·CVSS 4.3
CVE-2015-0840 [MEDIUM] CVE-2015-0840 dpkg: source package integrity verification bypass
CVE-2015-0840 dpkg: source package integrity verification bypass
Jann Horn discovered that the source package integrity verification in
dpkg-source can be bypassed via a specially crafted Debian source
control file (.dsc). Note that this flaw only affects extraction of
local Debian source packages via dpkg-source but not the installation of
packages from the Debian archive.
For the stable distribution (wheezy), this problem has been fixed in
version 1.16.16. This update also includes non-security changes
previously scheduled for the next wheezy point release. See the Debian
changelog for details.
For the unstable distribution (sid), this problem has been fixed in
version 1.17.25.
Discussion:
Created dpkg tracking bugs for this issue:
Affects: fedora-all [bug 1210749]
Affects: epel-al
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157387.htmlhttp://lists.opensuse.org/opensuse-updates/2015-06/msg00029.htmlhttp://www.debian.org/security/2015/dsa-3217http://www.ubuntu.com/usn/USN-2566-1http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157387.htmlhttp://lists.opensuse.org/opensuse-updates/2015-06/msg00029.htmlhttp://www.debian.org/security/2015/dsa-3217http://www.ubuntu.com/usn/USN-2566-1
2015-04-13
Published