groff utility vulnerability

ID USN-13-1
Type ubuntu
Reporter Ubuntu
Modified 2004-11-02T00:00:00


Recently, Trustix Secure Linux discovered a vulnerability in the groff package. The utility “groffer” created a temporary directory in an insecure way, which allowed exploitation of a race condition to create or overwrite files with the privileges of the user invoking the program.