|
Family: Ubuntu Local Security Checks --> Category: infos
USN13-1 : groff utility vulnerability Vulnerability Scan
Vulnerability Scan Summary groff utility vulnerability
Detailed Explanation for this Vulnerability Test
Synopsis :
These remote packages are missing security patches :
- groff
- groff-base
Description :
Recently, Trustix Secure Linux discovered a vulnerability in the groff
package. The utility "groffer" created a temporary directory in an
insecure way, which allowed exploitation of a race condition to create
or overwrite files with the rights of the user invoking the
program.
Solution :
Upgrade to :
- groff-1.18.1.1-1ubuntu0.1 (Ubuntu 4.10)
- groff-base-1.18.1.1-1ubuntu0.1 (Ubuntu 4.10)
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|