[19037] in bugtraq
Re: SuSe / Debian man package format string vulnerability
daemon@ATHENA.MIT.EDU (Robert Bihlmeyer)
Tue Feb 6 13:43:57 2001
Mime-Version: 1.0
Content-Type: multipart/signed; boundary="----------=_981448736-951-0";
micalg="pgp-sha1"; protocol="application/pgp-signature"
Message-Id: <87u268xl3l.fsf@hoss.orcus.priv.at>
Date: Tue, 6 Feb 2001 09:38:06 +0100
Reply-To: Robert Bihlmeyer <robbe@ORCUS.PRIV.AT>
From: Robert Bihlmeyer <robbe@ORCUS.PRIV.AT>
X-To: Martin Schulze <joey@infodrom.north.de>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: Martin Schulze's message of "Sun, 4 Feb 2001 11:05:54 +0100"
This is a multi-part message in MIME format.
It has been signed conforming to RFC2015.
You'll need PGP or GPG to check the signature.
------------=_981448736-951-0
Content-Type: text/plain; charset=us-ascii
Martin Schulze <joey@FINLANDIA.INFODROM.NORTH.DE> writes:
> Please tell me what you gain from this. man does not run setuid root/man
> but only setgid man.
Debian man-db is setuid (not setgid) man[1] in the latest stable and unstable
incarnations.
Getting uid man is not immediate death, but bad enough. Bug 84128 has
been reported (with the trivial patch) a week ago. Please fix it.
Footnotes:
[1] Unless you've set NOSETGID in /etc/manpath.config ... obvious,
isn't it?
--
Robbe
------------=_981448736-951-0
Content-Type: application/pgp-signature; name="signature.ng"
Content-Disposition: inline; filename="signature.ng"
Content-Transfer-Encoding: 7bit
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE6f7gp8g21h7wYWrMRAlNNAKCsZomz5ZuFk6eQ0VwYW/dm0CPPSQCgjgxp
XrUumCGnWAP6Rw+K/yieNK0=
=SbC1
-----END PGP SIGNATURE-----
------------=_981448736-951-0--
