Multiple Linux Vendor man Buffer Overrun Vulnerability

info
discussion
exploit
solution
references

Multiple Linux Vendor man Buffer Overrun Vulnerability

Solution:
Removal of the setgid bit from this application will eliminate the problem. Preformatted man pages will no longer be created, however.

Turbolinux man 1.5 g-5

TurboLinux man-1.5h1-1.i386.rpm
ftp://ftp.turbolinux.com/pub/updates/6.0/security/man-1.5h1-1.i386.rpm