> ...circumvent the signature of the InRelease file, leading to arbitrary
code execution.<p>> For the stable distribution (jessie), this problem has been fixed in version 1.0.9.8.4.<p>> For the unstable distribution (sid), this problem has been fixed in version 1.4~beta2.<p>> We recommend that you upgrade your apt packages.<p>Good find, Project Zero!