Search for packages
| purl | pkg:deb/debian/libytnef@1.5-6 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-21bd-whcr-ekgv
Aliases: CVE-2017-12141 |
In ytnef 1.9.2, a heap-based buffer overflow vulnerability was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file. |
Affected by 2 other vulnerabilities. |
|
VCID-2zd4-eyeq-27dd
Aliases: CVE-2017-9471 |
In ytnef 1.9.2, the SwapWord function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. |
Affected by 2 other vulnerabilities. |
|
VCID-4vcd-yfbf-2bew
Aliases: CVE-2021-3404 |
Multiple vulnerabilities have been discovered in ytnef, the worst of which could potentially lead to remote code execution. |
Affected by 0 other vulnerabilities. |
|
VCID-4w5v-t22x-5khp
Aliases: CVE-2021-3403 |
Multiple vulnerabilities have been discovered in ytnef, the worst of which could potentially lead to remote code execution. |
Affected by 0 other vulnerabilities. |
|
VCID-6bb4-nr6n-wufy
Aliases: CVE-2017-6304 |
security update |
Affected by 24 other vulnerabilities. Affected by 11 other vulnerabilities. |
|
VCID-8esx-t2u5-e3hq
Aliases: CVE-2017-9146 |
The TNEFFillMapi function in lib/ytnef.c in libytnef in ytnef through 1.9.2 does not ensure a nonzero count value before a certain memory allocation, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted tnef file. |
Affected by 2 other vulnerabilities. |
|
VCID-c3hk-hm71-eqdf
Aliases: CVE-2017-6800 |
security update |
Affected by 24 other vulnerabilities. Affected by 11 other vulnerabilities. |
|
VCID-cx2k-skx9-j3c6
Aliases: CVE-2017-6299 |
security update |
Affected by 24 other vulnerabilities. Affected by 11 other vulnerabilities. |
|
VCID-d529-bgrd-6ya7
Aliases: CVE-2017-6302 |
security update |
Affected by 24 other vulnerabilities. Affected by 11 other vulnerabilities. |
|
VCID-d7md-3ueu-puhr
Aliases: CVE-2017-9058 |
In libytnef in ytnef through 1.9.2, there is a heap-based buffer over-read due to incorrect boundary checking in the SIZECHECK macro in lib/ytnef.c. |
Affected by 11 other vulnerabilities. |
|
VCID-dnnp-fjbz-u7b6
Aliases: CVE-2017-6298 |
security update |
Affected by 24 other vulnerabilities. Affected by 11 other vulnerabilities. |
|
VCID-efxj-4v6j-fbaa
Aliases: CVE-2017-9474 |
In ytnef 1.9.2, the DecompressRTF function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. |
Affected by 2 other vulnerabilities. |
|
VCID-j1fz-gkzw-qbc9
Aliases: CVE-2017-6305 |
security update |
Affected by 24 other vulnerabilities. Affected by 11 other vulnerabilities. |
|
VCID-jhtz-myes-dua9
Aliases: CVE-2017-6301 |
security update |
Affected by 24 other vulnerabilities. Affected by 11 other vulnerabilities. |
|
VCID-mhyf-fp38-u3de
Aliases: CVE-2017-6306 |
security update |
Affected by 24 other vulnerabilities. Affected by 11 other vulnerabilities. |
|
VCID-nrgn-8ky2-pyec
Aliases: CVE-2017-12142 |
In ytnef 1.9.2, an invalid memory read vulnerability was found in the function SwapDWord in ytnef.c, which allows attackers to cause a denial of service via a crafted file. |
Affected by 2 other vulnerabilities. |
|
VCID-qjgm-8c1m-qbfg
Aliases: CVE-2017-6802 |
security update |
Affected by 24 other vulnerabilities. Affected by 11 other vulnerabilities. |
|
VCID-qkuz-r9a9-vqbx
Aliases: CVE-2017-9472 |
In ytnef 1.9.2, the SwapDWord function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. |
Affected by 2 other vulnerabilities. |
|
VCID-sag4-mswc-hbg5
Aliases: CVE-2017-9473 |
In ytnef 1.9.2, the TNEFFillMapi function in lib/ytnef.c allows remote attackers to cause a denial of service (memory consumption) via a crafted file. |
Affected by 2 other vulnerabilities. |
|
VCID-uar8-sxnf-efhs
Aliases: CVE-2017-12144 |
In ytnef 1.9.2, an allocation failure was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file. |
Affected by 2 other vulnerabilities. |
|
VCID-ujwn-5uux-gygu
Aliases: CVE-2017-9470 |
In ytnef 1.9.2, the MAPIPrint function in lib/ytnef.c allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file. |
Affected by 2 other vulnerabilities. |
|
VCID-vbsd-6wyd-qfgp
Aliases: CVE-2017-6801 |
security update |
Affected by 24 other vulnerabilities. Affected by 11 other vulnerabilities. |
|
VCID-vsdy-7eh2-8yc9
Aliases: CVE-2017-6300 |
security update |
Affected by 24 other vulnerabilities. Affected by 11 other vulnerabilities. |
|
VCID-z8rr-5xpx-eqbb
Aliases: CVE-2017-6303 |
security update |
Affected by 24 other vulnerabilities. Affected by 11 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-zaqk-yw24-t7h1 | Off-by-one error in the DecompressRTF function in ytnef.c in Yerase's TNEF Stream Reader allows remote attackers to cause a denial of service (crash) via a crafted TNEF file, which triggers a buffer overflow. |
CVE-2010-5109
|