Man -S Heap Overflow Vulnerability

info
discussion
exploit
solution
references

Man -S Heap Overflow Vulnerability

A heap overflow vulnerability exists in the 'man' system manual pager program.

The vulnerability exists due to a length check error when the -S option is given. As a result, it may be possible for a local user to execute arbitrary code with group 'man' privileges.