Security update for dpkg, update-alternatives
dpkg and update-alternatives were updated to 1.16.16 to fix one security issue and severan non-security bugs.
The following vulnerabilities were fixed:
* CVE-2015-0840: Specially crafted deb packages could have been used to bypass source package integrity verification in local installs (boo#926749)
Also contains a number of upstream bugs and improvements.
-
Submitted by
Tomáš Chvátal (scarabeus_iv)
Fixed bugs
bnc#926749
VUL-1: CVE-2015-0840: dpkg: source package integrity verification bypass
