CVE-2018-25078

man-db before 2.8.5 on Gentoo allows local users with access to the man user account to gain root privileges because /usr/bin/mandb is executed by root but not owned by root. Also, the owner can strip the setuid and setgid bits...

man-db 2.4.1 open_cat_stream() Local uid=man Exploit

No description provided by source. !/bin/bash xmandb.sh: shell command file. man-dbv2.4.1-: local uid=man exploit. by: vade79/v9 v9 fakehalo deadpig org fakehalo opencatstream privileged call exploit. i've been conversing with the new man-db maintainer, and after the initial post sent to...