[Secure-testing-team] Bug#553533: debian-archive-keyring: squeeze Release: The following signatures were invalid: BADSIG 9AA38DCD55BE302B Debian Archive Automatic Signing Key (5.0/lenny) <ftpmaster at debian.org>
Rick Thomas
rbthomas at greybox.rcthomas.org
Sun Nov 1 04:23:26 UTC 2009
Package: debian-archive-keyring
Version: 2009.01.31
Severity: critical
Tags: security
Justification: root security hole
Aptitude update gets the error message in the subject.
The archive in question is
http://debian.lcs.mit.edu squeeze
I haven't tried it with other archives yet.
-- System Information:
Debian Release: squeeze/sid
APT prefers testing
APT policy: (500, 'testing')
Architecture: powerpc (ppc)
Kernel: Linux 2.6.30-2-powerpc
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash
Versions of packages debian-archive-keyring depends on:
ii gnupg 1.4.10-2 GNU privacy guard - a free PGP rep
debian-archive-keyring recommends no packages.
debian-archive-keyring suggests no packages.
-- no debconf information
More information about the Secure-testing-team
mailing list