thr3ads.net - Secure testing team - [Secure-testing-team] Bug#553533: debian-archive-keyring: squeeze Release: The following signatures were invalid: BADSIG 9AA38DCD55BE302B Debian Archive Automatic Signing Key (5.0/lenny) <ftpmaster@debian.org> [Nov 2009]

If this information is useful, please help other people find it:
Share via:

Rick Thomas

2009-Nov-01 04:23 UTC

[Secure-testing-team] Bug#553533: debian-archive-keyring: squeeze Release: The following signatures were invalid: BADSIG 9AA38DCD55BE302B Debian Archive Automatic Signing Key (5.0/lenny) <ftpmaster@debian.org>

Package: debian-archive-keyring
Version: 2009.01.31
Severity: critical
Tags: security
Justification: root security hole

Aptitude update gets the error message in the subject.
The archive in question is

	http://debian.lcs.mit.edu squeeze

I haven''t tried it with other archives yet.

-- System Information:
Debian Release: squeeze/sid
  APT prefers testing
  APT policy: (500, ''testing'')
Architecture: powerpc (ppc)

Kernel: Linux 2.6.30-2-powerpc
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash

Versions of packages debian-archive-keyring depends on:
ii  gnupg                         1.4.10-2   GNU privacy guard - a free PGP rep

debian-archive-keyring recommends no packages.

debian-archive-keyring suggests no packages.

-- no debconf information

Secure testing team - Nov 2009 - Bug#553533: debian-archive-keyring: squeeze Release: The following signatures were invalid: BADSIG 9AA38DCD55BE302B Debian Archive Automatic Signing Key (5.0/lenny) <ftpmaster@debian.org>

[Secure-testing-team] Bug#553533: debian-archive-keyring: squeeze Release: The following signatures were invalid: BADSIG 9AA38DCD55BE302B Debian Archive Automatic Signing Key (5.0/lenny) <ftpmaster@debian.org>