Vulnerability Development mailing list archives

man package / SuSe format string vulnerabilities

From: Joao Gouveia <tharbad () kaotik org>
Date: Fri, 26 Jan 2001 03:17:56 -0000

Hi there,

I'm sorry if this is a known issue, but i didn't find nothing related to
format strings in this man package.
Example follows:
<quote>
jroberto@spike:~ > cat /etc/issue

Welcome to SuSE Linux 6.3 (i386) - Kernel \r (\l).

jroberto@spike:~ > man -l %x%x%x%x
man: 0bffff8600bffff85c: No such file or directory
jroberto@spike:~ > man -V
man, version 2.3.10, db 2.3.1, July 12th, 1995 (G.Wilford () ee surrey ac uk)
</quote>

AFAIK, suse 7.0 also ships with this 'man'. Can anyone confirm this?

Best regards,

Joao Gouveia
--------------
tharbad () kaotik org

Current thread:

man package / SuSe format string vulnerabilities Joao Gouveia (Jan 25)
- Re: man package / SuSe format string vulnerabilities syzop (Jan 26)
- Re: man package / SuSe format string vulnerabilities Sean (Jan 26)