CVE-2017-9473

Опубликовано: 07 июн. 2017

Источник: debian

Описание

In ytnef 1.9.2, the TNEFFillMapi function in lib/ytnef.c allows remote attackers to cause a denial of service (memory consumption) via a crafted file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libytnef	fixed	1.9.3-1		package
libytnef	no-dsa		stretch	package
libytnef	no-dsa		jessie	package
libytnef	no-dsa		wheezy	package

Примечания

https://github.com/Yeraze/ytnef/issues/42
https?//github.com/Yeraze/ytnef/commit/a341b7f1bf8a2c59ece89f2d6cdc09856d501cc0
https://blogs.gentoo.org/ago/2017/05/24/ytnef-memory-allocation-failure-in-tneffillmapi-ytnef-c/

Связанные уязвимости

CVE-2017-9473

CVSS3: 5.5

ubuntu

больше 8 лет назад

In ytnef 1.9.2, the TNEFFillMapi function in lib/ytnef.c allows remote attackers to cause a denial of service (memory consumption) via a crafted file.

CVE-2017-9473

CVSS3: 5.5

nvd

больше 8 лет назад

In ytnef 1.9.2, the TNEFFillMapi function in lib/ytnef.c allows remote attackers to cause a denial of service (memory consumption) via a crafted file.

GHSA-f94h-w96q-8548

CVSS3: 5.5

github

больше 3 лет назад

In ytnef 1.9.2, the TNEFFillMapi function in lib/ytnef.c allows remote attackers to cause a denial of service (memory consumption) via a crafted file.