andries brouwer man 1.5i2 vulnerabilities and exploits

(subscribe to this query)

man before 1.5l allows attackers to execute arbitrary code via a malformed man file with improper quotes, which causes the my_xsprintf function to return a string with the value "unsafe," which is then executed as a program via a system call if it is in the search path...

Andries Brouwer Man 1.5h1 Andries Brouwer Man 1.5i Andries Brouwer Man 1.5i2 Andries Brouwer Man 1.5j Andries Brouwer Man 1.5k1 EDB exploit available