October 2, 2001

Conectiva: 'groff' multiple vulnerabilities

Author: JT Smith

From an advisory at LinuxSecurity.com: "Groff is the GNU version of troff, a document processor that ships
with most Unix systems. Among other functions, it formats system
manual pages into human-readable form." A new release fixes an issue that caused groff to read untrusted commands from working directories, and modifies a command that was vulnerable to a format string attack.


  • Linux
Click Here!