Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-5081HistoryJun 30, 2011 - 3:55 p.m.
CVE-2009-5081
2011-06-3015:55:00
Debian Security Bug Tracker
security-tracker.debian.org
11
0.0004 Low
EPSS
Percentile
5.2%
The (1) config.guess, (2) contrib/groffer/perl/groffer.pl, and (3) contrib/groffer/perl/roff2.pl scripts in GNU troff (aka groff) 1.21 and earlier use an insufficient number of X characters in the template argument to the tempfile function, which makes it easier for local users to overwrite arbitrary files via a symlink attack on a temporary file, a different vulnerability than CVE-2004-0969.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | groff | < 1.20.1-5 | groff_1.20.1-5_all.deb |
| Debian | 11 | all | groff | < 1.20.1-5 | groff_1.20.1-5_all.deb |
| Debian | 10 | all | groff | < 1.20.1-5 | groff_1.20.1-5_all.deb |
| Debian | 999 | all | groff | < 1.20.1-5 | groff_1.20.1-5_all.deb |
| Debian | 13 | all | groff | < 1.20.1-5 | groff_1.20.1-5_all.deb |
Related
prion
prion
Authentication flaw
2011-06-30 15:55:00
cvelist
cvelist
CVE-2009-5081
2011-06-30 15:26:00
CVE-2004-0969
2004-10-20 04:00:00
cve
cve
CVE-2009-5081
2011-06-30 15:55:00
CVE-2004-0969
2005-02-09 05:00:00
ubuntucve
ubuntucve
CVE-2009-5081
2011-06-30 00:00:00
CVE-2004-0969
2005-02-09 00:00:00
nessus
nessus
FreeBSD : groff -- groffer uses temporary files unsafely (169f422f-bd88-11d9-a281-02e018374e71)
2005-07-13 00:00:00
Ubuntu 4.10 : groff utility vulnerability (USN-13-1)
2006-01-15 00:00:00
Mandrake Linux Security Advisory : groff (MDKSA-2006:038)
2006-02-10 00:00:00
openvas
openvas
FreeBSD Ports: ja-groff
2008-09-04 00:00:00
FreeBSD Ports: ja-groff
2008-09-04 00:00:00
Ubuntu: Security Advisory (USN-13-1)
2022-08-26 00:00:00
debiancve
debiancve
CVE-2004-0969
2005-02-09 05:00:00
ubuntu
ubuntu
groff utility vulnerability
2004-11-02 00:00:00
freebsd
freebsd
groff -- groffer uses temporary files unsafely
2004-09-30 00:00:00
gentoo
gentoo
OpenSSL, Groff: Insecure tempfile handling
2004-11-08 00:00:00
Groff: Multiple Vulnerabilities
2013-10-25 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: groff-1.21-4.fc15
2012-06-07 23:01:51
[SECURITY] Fedora 17 Update: groff-1.21-9.fc17
2012-06-07 23:08:46
[SECURITY] Fedora 16 Update: groff-1.21-4.fc16
2012-06-07 23:04:24
slackware
slackware
slackware-current security updates
2005-09-08 15:55:02