Justicz: Remote Code Execution in apt/apt-get

Max Justicz describes avulnerability in apt-get and how to prevent it. "I found avulnerability in apt that allows a network man-in-the-middle (or amalicious package mirror) to execute arbitrary code as root on a machineinstalling any package. The bug has been fixed in the latest versions ofapt. If you're worried about being exploited during the update process, youcan protect yourself by disabling HTTP redirects while you update."