• info
• discussion
• exploit
• solution
• references

GNU Troff (Groff) Insecure Temporary File Creation Vulnerabilities

Solution:
Ubuntu has released advisory USN-43-1 to address these issues. Please see the referenced advisory for more information.


GNU groff 1.18

• Ubuntu groff-base_1.18.1.1-1ubuntu0.2_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff-base_1.18.1. 1-1ubuntu0.2_amd64.deb


• Ubuntu groff-base_1.18.1.1-1ubuntu0.2_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff-base_1.18.1. 1-1ubuntu0.2_i386.deb


• Ubuntu groff-base_1.18.1.1-1ubuntu0.2_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff-base_1.18.1. 1-1ubuntu0.2_powerpc.deb


• Ubuntu groff_1.18.1.1-1ubuntu0.2_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff_1.18.1.1-1ub untu0.2_amd64.deb


• Ubuntu groff_1.18.1.1-1ubuntu0.2_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff_1.18.1.1-1ub untu0.2_i386.deb


• Ubuntu groff_1.18.1.1-1ubuntu0.2_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/g/groff/groff_1.18.1.1-1ub untu0.2_powerpc.deb