VYPR
Unrated severityNVD Advisory· Published Jun 30, 2011· Updated Jun 16, 2026

CVE-2009-5079

CVE-2009-5079

Description

The (1) gendef.sh, (2) doc/fixinfo.sh, and (3) contrib/gdiffmk/tests/runtests.in scripts in GNU troff (aka groff) 1.21 and earlier allow local users to overwrite arbitrary files via a symlink attack on a gro#####.tmp or /tmp/##### temporary file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

17
  • GNU/Groff17 versions
    cpe:2.3:a:gnu:groff:*:*:*:*:*:*:*:*+ 16 more
    • cpe:2.3:a:gnu:groff:*:*:*:*:*:*:*:*range: <=1.21
    • cpe:2.3:a:gnu:groff:1.10:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:groff:1.11:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:groff:1.11a:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:groff:1.14:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:groff:1.15:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:groff:1.16:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:groff:1.16.1:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:groff:1.17.1:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:groff:1.17.2:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:groff:1.18.1:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:groff:1.19:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:groff:1.19.1:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:groff:1.19.2:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:groff:1.20:*:*:*:*:*:*:*
    • cpe:2.3:a:gnu:groff:1.20.1:*:*:*:*:*:*:*
    • (no CPE)range: <=1.21

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.