Create an account

Subscribe to LWN

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

Weekly edition	Kernel	Security	Distributions	Contact Us	Search
Archives	Calendar	Subscribe	Write for LWN	LWN.net FAQ	Sponsors

groff: multiple vulnerabilities

Package(s):

groff

CVE #(s):

CVE-2009-5080 CVE-2009-5081

Created:

June 8, 2012

Updated:

June 13, 2012

Description:

From the Fedora advisory:

older security fixes:

- CVE-2009-5080: improper handling of failed attempts to create temporary directories in eqn2graph/pic2graph/grap2graph

- CVE-2009-5081: roff2.pl and groffer.pl use easy-to-guess temporary file names

Alerts:

Fedora	FEDORA-2012-8590	2012-06-07
Fedora	FEDORA-2012-8596	2012-06-07
Fedora	FEDORA-2012-8577	2012-06-07
Mageia	MGASA-2012-0164	2012-07-14
Mandriva	MDVSA-2013:085	2013-04-09
Mandriva	MDVSA-2013:086	2013-04-09

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds