← back
CVE-2015-1337

CVE-2015-1337

EPSS 1.7%
Simple Streams (simplestreams) does not properly verify the GPG signatures of disk image files, which allows remote mirror servers to spoof disk images and have unspecified other impact via a 403 (aka Forbidden) response.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugs.launchpad.net/ubuntu/%2Bsource/simplestreams/%2Bbug/1487004http://www.ubuntu.com/usn/USN-2746-1http://www.ubuntu.com/usn/USN-2746-2