Former versions of man2html uses a static file in /tmp for writing.
This can lead into overwriting system files if a malicious user has
created a symbolic link to it before upgrading man2html.

We recommend you upgrade your man2html package as soon as possible.

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.


Debian GNU/Linux 2.1 alias slink
--------------------------------

  Source archives:

          MD5 checksum: 53cdbc6fbe63572343ae3d614231d645
          MD5 checksum: d2b1dad5ea16a1b108922d0d5141c2d3

  Alpha architecture:

          MD5 checksum: 20c0e49d6f2103d826c1672f6413e6a1

  Intel ia32 architecture:

          MD5 checksum: 0a34bb26fbdae8aba227975fb7d36431

  Motorola 680x0 architecture:

          MD5 checksum: 86a22c1e1710fccdd8734b24aa035bc0

  Sun Sparc architecture:

          MD5 checksum: bc15c8fa1ce8c0e1741c932d5d88ef9a


Debian GNU/Linux unstable alias potato
--------------------------------------

  Source archives:

    1.5-19.diff.gz
      MD5 checksum: a0d8f044c5738f9a3d3fd5b55bdc4280
          MD5 checksum: 276dc18f9c007d800e280254a75eb304
    .5.orig.tar.gz
      MD5 checksum: 2fc4ee65395122b5552473cd62876924

  Alpha architecture:

          MD5 checksum: 27c65533b58d2efa66f6ad03190aaa40

  ARM architecture:

          MD5 checksum: 18b931be845fe4ddd9effac130f27ae5

  Intel ia32 architecture:

          MD5 checksum: 10317d451398a9c265a11ffc6c7abd78

  Motorola 680x0 architecture:

          MD5 checksum: a163020946de9839ab2f6dbf0fa3cf25

  PowerPC architecture:

          MD5 checksum: 5f856e95c642bdacc4c4389996c6ab60

  Sun Sparc architecture:

          MD5 checksum: 4f2feb56b87792e00c5525ed889cc541


--
Debian GNU/Linux      .    Security Managers     .   security@debian.org
              debian-security-announce@lists.debian.org
  Christian Hudon     .     Wichert Akkerman     .     Martin Schulze
   .     .