CVE-2017-8911

Опубликовано: 12 мая 2017

Источник: ubuntu

Приоритет: medium

CVSS2: 7.5

CVSS3: 9.8

Описание

An integer underflow has been identified in the unicode_to_utf8() function in tnef 1.4.14. This might lead to invalid write operations, controlled by an attacker.

Релиз	Статус	Примечание
devel	not-affected	1.4.12-1.2
esm-apps/xenial	released	1.4.9-1+deb8u3build0.16.04.1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [1.4.9-1+deb8u3build0.14.04.1]]
precise/esm	DNE
trusty	released	1.4.9-1+deb8u3build0.14.04.1
trusty/esm	DNE	trusty was released [1.4.9-1+deb8u3build0.14.04.1]
upstream	needs-triage
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	released	1.4.9-1+deb8u3build0.16.04.1

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2017-8911

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2017-8911

CVSS3: 9.8

nvd

больше 8 лет назад

An integer underflow has been identified in the unicode_to_utf8() function in tnef 1.4.14. This might lead to invalid write operations, controlled by an attacker.

CVE-2017-8911

CVSS3: 9.8

debian

больше 8 лет назад

An integer underflow has been identified in the unicode_to_utf8() func ...

openSUSE-SU-2017:3095-1

suse-cvrf

около 8 лет назад

Security update for tnef

GHSA-575j-8r4j-2fmq

CVSS3: 9.8

github

больше 3 лет назад

An integer underflow has been identified in the unicode_to_utf8() function in tnef 1.4.14. This might lead to invalid write operations, controlled by an attacker.

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2017-8911

Описание

Пакет tnef

Ссылки на источники

Связанные уязвимости