netbsd-bugs: pkg/18522: gv has security issue

Subject: pkg/18522: gv has security issue
To: None <gnats-bugs@gnats.netbsd.org>
From: None <reed@reedmedia.net>
List: netbsd-bugs
Date: 10/03/2002 09:49:37

>Number:         18522
>Category:       pkg
>Synopsis:       gv can execute arbitary shell commands
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    pkg-manager
>State:          open
>Class:          change-request
>Submitter-Id:   net
>Arrival-Date:   Thu Oct 03 09:51:02 PDT 2002
>Closed-Date:
>Last-Modified:
>Originator:     
>Release:        NetBSD 1.6
>Organization:
http://bsd.reedmedia.net/
>Environment:
	
	
System: NetBSD rainier.reedmedia.net 1.6 NetBSD 1.6 (JCR-20020927) #3: Sat Sep 28 13:40:20 PDT 2002 reed@rainier.reedmedia.net:/usr/src/sys/arch/i386/compile/JCR-20020927 i386
Architecture: i386
Machine: i386
>Description:
I read a few security advisories that say that a filename
could contain a malicious filename that can be executed by system().
>How-To-Repeat:
cp some.pdf to "xxx & echo hello & xxx"
gv "xxx & echo hello & xxx"
>Fix:
The advisory at http://www.epita.fr/~bevand_m/asa/asa-0000
contains a suggested patch.
Please consider adding patch for pkgsrc/print/gv
and add to packages vulnerabilitie list.
>Release-Note:
>Audit-Trail:
>Unformatted: