[37170] in bugtraq
[USN-13-1] groff utility vulnerability
daemon@ATHENA.MIT.EDU (Martin Pitt)
Mon Nov 1 17:27:58 2004
Date: Mon, 1 Nov 2004 18:24:40 +0100
From: Martin Pitt <martin.pitt@canonical.com>
To: ubuntu-security-announce@lists.ubuntu.com
Cc: full-disclosure@lists.netsys.com, bugtraq@securityfocus.com
Message-ID: <20041101172440.GA31760@box79162.elkhouse.de>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
protocol="application/pgp-signature"; boundary="gKMricLos+KVdGMg"
Content-Disposition: inline
--gKMricLos+KVdGMg
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
===========================================================
Ubuntu Security Notice USN-13-1 November 1, 2004
groff utility vulnerability
CAN-2004-0969
===========================================================
A security issue affects the following Ubuntu releases:
Ubuntu 4.10 (Warty Warthog)
The following packages are affected:
groff
The problem can be corrected by upgrading the affected package to
version 1.18.1.1-1ubuntu0.1. In general, a standard system upgrade
is sufficient to effect the necessary changes.
Details follow:
Recently, Trustix Secure Linux discovered a vulnerability in the groff
package. The utility "groffer" created a temporary directory in an
insecure way, which allowed exploitation of a race condition to create
or overwrite files with the privileges of the user invoking the
program.
Source archives:
http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff_1.18.1.1-1ubuntu0.1.diff.gz
Size/MD5: 122858 a92b7aa4bc54084f4b23b5b9e5ac3c93
http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff_1.18.1.1-1ubuntu0.1.dsc
Size/MD5: 715 43ca684c0d8f9043bbe1379b8f974775
http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff_1.18.1.1.orig.tar.gz
Size/MD5: 2260623 511dbd64b67548c99805f1521f82cc5e
amd64 architecture (Athlon64, Opteron, EM64T Xeon)
http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff-base_1.18.1.1-1ubuntu0.1_amd64.deb
Size/MD5: 856182 2cd0d31b4bff4b82cffb7a908b505e9b
http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff_1.18.1.1-1ubuntu0.1_amd64.deb
Size/MD5: 1889974 32f2d724e153d7fcf0674dadf5a7ed09
i386 architecture (x86 compatible Intel/AMD)
http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff-base_1.18.1.1-1ubuntu0.1_i386.deb
Size/MD5: 807494 58587e715f46456b8835e1a2e79e99a6
http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff_1.18.1.1-1ubuntu0.1_i386.deb
Size/MD5: 1843024 5361659b8437d45e3d1d64be03269c8d
powerpc architecture (Apple Macintosh G3/G4/G5)
http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff-base_1.18.1.1-1ubuntu0.1_powerpc.deb
Size/MD5: 860482 068d0a03621f0194cc518b6c0bc8d7b4
http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff_1.18.1.1-1ubuntu0.1_powerpc.deb
Size/MD5: 1885040 ab4b353bac496dc2ef4d2873bbbc67a2
--gKMricLos+KVdGMg
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: Digital signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFBhnFYDecnbV4Fd/IRAkfsAJ9TemWgN3C5yoPYr3Yjm9BGsx4cTACfRpZ9
ZJ09W+Et8J4H4CFO5OOB/ZU=
=BAZU
-----END PGP SIGNATURE-----
--gKMricLos+KVdGMg--
