Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnu groff 1.20.1 vulnerabilities and exploits
(subscribe to this query)
3.3
CVSSv2
CVE-2009-5079
The (1) gendef.sh, (2) doc/fixinfo.sh, and (3) contrib/gdiffmk/tests/runtests.in scripts in GNU troff (aka groff) 1.21 and previous versions allow local users to overwrite arbitrary files via a symlink attack on a gro#####.tmp or /tmp/##### temporary file.
Gnu Groff
Gnu Groff 1.16.1
Gnu Groff 1.16
Gnu Groff 1.19.2
Gnu Groff 1.18.1
Gnu Groff 1.11a
Gnu Groff 1.19.1
Gnu Groff 1.20
Gnu Groff 1.19
Gnu Groff 1.20.1
Gnu Groff 1.14
Gnu Groff 1.17.2
Gnu Groff 1.10
Gnu Groff 1.17.1
Gnu Groff 1.11
Gnu Groff 1.15
3.3
CVSSv2
CVE-2009-5081
The (1) config.guess, (2) contrib/groffer/perl/groffer.pl, and (3) contrib/groffer/perl/roff2.pl scripts in GNU troff (aka groff) 1.21 and previous versions use an insufficient number of X characters in the template argument to the tempfile function, which makes it easier for loc...
Gnu Groff
Gnu Groff 1.16.1
Gnu Groff 1.16
Gnu Groff 1.19.2
Gnu Groff 1.18.1
Gnu Groff 1.11a
Gnu Groff 1.19.1
Gnu Groff 1.20
Gnu Groff 1.19
Gnu Groff 1.20.1
Gnu Groff 1.14
Gnu Groff 1.17.2
Gnu Groff 1.10
Gnu Groff 1.17.1
Gnu Groff 1.11
Gnu Groff 1.15
3.3
CVSSv2
CVE-2009-5080
The (1) contrib/eqn2graph/eqn2graph.sh, (2) contrib/grap2graph/grap2graph.sh, and (3) contrib/pic2graph/pic2graph.sh scripts in GNU troff (aka groff) 1.21 and previous versions do not properly handle certain failed attempts to create temporary directories, which might allow local...
Gnu Groff
Gnu Groff 1.16.1
Gnu Groff 1.16
Gnu Groff 1.19.2
Gnu Groff 1.18.1
Gnu Groff 1.11a
Gnu Groff 1.19.1
Gnu Groff 1.20
Gnu Groff 1.19
Gnu Groff 1.20.1
Gnu Groff 1.14
Gnu Groff 1.17.2
Gnu Groff 1.10
Gnu Groff 1.17.1
Gnu Groff 1.11
Gnu Groff 1.15
1 Github repository
3.3
CVSSv2
CVE-2009-5082
The (1) configure and (2) config.guess scripts in GNU troff (aka groff) 1.20.1 on Openwall GNU/*/Linux (aka Owl) improperly create temporary files upon a failure of the mktemp function, which makes it easier for local users to overwrite arbitrary files via a symlink attack on a t...
Gnu Groff 1.20.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started