|
Family: Debian Local Security Checks --> Category: infos
[DSA072] DSA-072-1 groff Vulnerability Scan
Vulnerability Scan Summary DSA-072-1 groff
Detailed Explanation for this Vulnerability Test
Zenith Parse found a security problem in groff (the GNU version of
troff). The pic command was vulnerable to a printf format attack
which made it possible to circumvent the `-S' option and execute
arbitrary code.
This has been fixed in version 1.15.2-2, and we recommend that you upgrade
your groff packages immediately.
Solution : http://www.debian.org/security/2001/dsa-072
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|