NetWinder.org - NetWinder security advisory Page

NAVIGATION

About
News
Support

Downloads
- Search
- Mirrors
- Auto update

Documentation
- FAQ
- HOWTOs
- ARM info
- Crusoe info

Development
- Toolchain
- Autobuild
- Users

Sponsored by:

NetWinder security advisory

ID	2000-001
Issued	2000-Feb-26
Updated	2000-Jun-25
Package	man
Summary	A buffer overflow in man
Category	Buffer overflow
Severity	Low (local setgid vulnerability)
Products	Developer dm-3.1-15 and earlier
	OfficeServer os-1.5-4 and earlier

DESCRIPTION

A buffer overflow in the "man" package has been found. As a result of this bug, a local user could gain effective gid of "man" by manipulating the MANPATH environment variable. After doing so, the user could alter system manual pages to execute arbitrary code.

SOLUTION

Download the following RPM packages to the NetWinder into a temporary directory, then install them with the command "rpm -Uvh *.rpm". Be sure there are no other files ending in ".rpm" in the temporary directory. See http://www.netwinder.org/security/install.html for more help.

http://www.netwinder.org/updates/3.1-15/armv4l/man-1.5h1-2.6.x.armv4l.rpm

REFERENCES

BugTraq (Michal Zalewski) http://www.securityfocus.com/vdb/bottom.html?vid=1011