Description
Format string vulnerability in pic utility in groff 1.16.1 and other versions, and jgroff before 1.15, allows remote attackers to bypass the -S option and execute arbitrary commands via format string specifiers in the plot command.
Affected products
- gnu / groff1.10 – 1.10
- gnu / groff1.11 – 1.11
- gnu / groff1.11a – 1.11a
- gnu / groff1.14 – 1.14
- gnu / groff1.15 – 1.15
- gnu / groff1.16.1 – 1.16.1
- jgroff / jgroff
References
- MISChttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000428
- VENDOR_ADVISORYhttp://www.debian.org/security/2002/dsa-107
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/6918
- MISChttp://www.securityfocus.com/bid/3103
- VENDOR_ADVISORYhttp://www.debian.org/security/2001/dsa-072
- MISChttp://www.osvdb.org/1914
- MISChttp://www.redhat.com/support/errata/RHSA-2002-004.html
- MISChttp://www.securityfocus.com/archive/1/199706