[11120] in bugtraq
Re: Troff dangerous.
daemon@ATHENA.MIT.EDU (Julian Squires)
Sun Jul 25 18:26:24 1999
Mime-Version: 1.0
Content-Type: multipart/signed; boundary=HlL+5n6rz5pIUxbD; micalg=pgp-md5;
protocol="application/pgp-signature"
Message-Id: <19990725011311.A21804@distorted.mu.shrooms.com>
Date: Sun, 25 Jul 1999 01:13:11 -021800
Reply-To: Julian Squires <tek@WIW.ORG>
From: Julian Squires <tek@WIW.ORG>
X-To: Bugtraq List <BUGTRAQ@SECURITYFOCUS.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <19990723221642.A15331@szarik>; from Pawel Wilk on Fri, Jul 23,
1999 at 10:16:42PM +0200
--HlL+5n6rz5pIUxbD
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: quoted-printable
On Fri, Jul 23, 1999 at 10:16:42PM +0200, Pawel Wilk wrote:
> If you want your system safe,=20
> don't look as root=20
> at manual page.
Redhat 5.2 is vulnerable. Both Debian slink and potato are not. Both
use groff 1.11a, but Debian's is patched. It appears that stock groff
1.11a is vulnerable, probably any older groff, as well.
--=20
-/=20
|/| Julian Squires <tek@wiw.org>
/- <js@ooc.com>
--HlL+5n6rz5pIUxbD
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
iQCVAgUBN5qHzwUXjbm04x6lAQGNSgP+JuT/8uEXt3B6Kd1ogS5hvGxaiPKZDWSV
Dv719Sq9bddsKoHb850Fo8e4WA88o+B2z8nG4EFRHDdtv1JsNsOGeze9eIdEEtBK
E5NjJr2AEUUwy+FbAJJ9FL9RjQ4SRsUX2naO9DXWHcxEWAHe7wU8tPTgSa+ay4Hb
5qGy6KgTs0A=
=8Eq/
-----END PGP SIGNATURE-----
--HlL+5n6rz5pIUxbD--
