COMMAND

    man2html

SYSTEMS AFFECTED

    Debian

PROBLEM

    Former  versions  of  man2html  uses  a  static  file  in /tmp for
    writing.   This  can  lead  into  overwriting  system  files  if a
    malicious user has created a symbolic link to it before  upgrading
    man2html.

SOLUTION

    Debian security team recommends you upgrade your man2html  package
    as soon as possible.

    Debian GNU/Linux 2.1 alias slink
    --------------------------------

        ftp://ftp.debian.org/debian/dists/proposed-updates/man2html_1.5-18.1.diff.gz
        ftp://ftp.debian.org/debian/dists/proposed-updates/man2html_1.5-18.1.dsc

        ftp://ftp.debian.org/debian/dists/proposed-updates/man2html_1.5-18.1_alpha.deb

        ftp://ftp.debian.org/debian/dists/proposed-updates/man2html_1.5-18.1_i386.deb

        ftp://ftp.debian.org/debian/dists/proposed-updates/man2html_1.5-18.1_m68k.deb

        ftp://ftp.debian.org/debian/dists/proposed-updates/man2html_1.5-18.1_sparc.deb

    Debian GNU/Linux unstable alias potato
    --------------------------------------

        ftp://ftp.debian.org/debian/dists/unstable/main/source/doc/man2html_1.5-19.diff.gz
        ftp://ftp.debian.org/debian/dists/unstable/main/source/doc/man2html_1.5-19.dsc
        ftp://ftp.debian.org/debian/dists/unstable/main/source/doc/man2html_1.5.orig.tar.gz

        ftp://ftp.debian.org/debian/dists/unstable/main/binary-alpha/doc/man2html_1.5-19.deb

        ftp://ftp.debian.org/debian/dists/unstable/main/binary-arm/doc/man2html_1.5-19.deb

        ftp://ftp.debian.org/debian/dists/unstable/main/binary-i386/doc/man2html_1.5-19.deb

        ftp://ftp.debian.org/debian/dists/unstable/main/binary-m68k/doc/man2html_1.5-19.deb

        ftp://ftp.debian.org/debian/dists/unstable/main/binary-powerpc/doc/man2html_1.5-19.deb

        ftp://ftp.debian.org/debian/dists/unstable/main/binary-sparc/doc/man2html_1.5-19.deb