CVE-2003-0645

描述

man-db 2.3.12 and 2.3.18 to 2.4.1 uses certain user-controlled DEFINE directives from the ~/.manpath file, even when running setuid, which could allow local users to gain privileges.

受影響套件(1)

• Debian/man-dbfrom 0, < 2.4.1-13

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2003-0645