Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/libytnef@1.9.2-2
purl pkg:deb/debian/libytnef@1.9.2-2
Next non-vulnerable version 1.9.3-3
Latest non-vulnerable version 1.9.3-3
Risk 3.1
Vulnerabilities affecting this package (11)
Vulnerability Summary Fixed by
VCID-21bd-whcr-ekgv
Aliases:
CVE-2017-12141
In ytnef 1.9.2, a heap-based buffer overflow vulnerability was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file.
1.9.3-1
Affected by 2 other vulnerabilities.
VCID-2zd4-eyeq-27dd
Aliases:
CVE-2017-9471
In ytnef 1.9.2, the SwapWord function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file.
1.9.3-1
Affected by 2 other vulnerabilities.
VCID-4vcd-yfbf-2bew
Aliases:
CVE-2021-3404
Multiple vulnerabilities have been discovered in ytnef, the worst of which could potentially lead to remote code execution.
1.9.3-3
Affected by 0 other vulnerabilities.
VCID-4w5v-t22x-5khp
Aliases:
CVE-2021-3403
Multiple vulnerabilities have been discovered in ytnef, the worst of which could potentially lead to remote code execution.
1.9.3-3
Affected by 0 other vulnerabilities.
VCID-8esx-t2u5-e3hq
Aliases:
CVE-2017-9146
The TNEFFillMapi function in lib/ytnef.c in libytnef in ytnef through 1.9.2 does not ensure a nonzero count value before a certain memory allocation, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted tnef file.
1.9.3-1
Affected by 2 other vulnerabilities.
VCID-efxj-4v6j-fbaa
Aliases:
CVE-2017-9474
In ytnef 1.9.2, the DecompressRTF function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file.
1.9.3-1
Affected by 2 other vulnerabilities.
VCID-nrgn-8ky2-pyec
Aliases:
CVE-2017-12142
In ytnef 1.9.2, an invalid memory read vulnerability was found in the function SwapDWord in ytnef.c, which allows attackers to cause a denial of service via a crafted file.
1.9.3-1
Affected by 2 other vulnerabilities.
VCID-qkuz-r9a9-vqbx
Aliases:
CVE-2017-9472
In ytnef 1.9.2, the SwapDWord function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file.
1.9.3-1
Affected by 2 other vulnerabilities.
VCID-sag4-mswc-hbg5
Aliases:
CVE-2017-9473
In ytnef 1.9.2, the TNEFFillMapi function in lib/ytnef.c allows remote attackers to cause a denial of service (memory consumption) via a crafted file.
1.9.3-1
Affected by 2 other vulnerabilities.
VCID-uar8-sxnf-efhs
Aliases:
CVE-2017-12144
In ytnef 1.9.2, an allocation failure was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file.
1.9.3-1
Affected by 2 other vulnerabilities.
VCID-ujwn-5uux-gygu
Aliases:
CVE-2017-9470
In ytnef 1.9.2, the MAPIPrint function in lib/ytnef.c allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.
1.9.3-1
Affected by 2 other vulnerabilities.
Vulnerabilities fixed by this package (13)
Vulnerability Summary Aliases
VCID-6bb4-nr6n-wufy security update CVE-2017-6304
VCID-c3hk-hm71-eqdf security update CVE-2017-6800
VCID-cx2k-skx9-j3c6 security update CVE-2017-6299
VCID-d529-bgrd-6ya7 security update CVE-2017-6302
VCID-d7md-3ueu-puhr In libytnef in ytnef through 1.9.2, there is a heap-based buffer over-read due to incorrect boundary checking in the SIZECHECK macro in lib/ytnef.c. CVE-2017-9058
VCID-dnnp-fjbz-u7b6 security update CVE-2017-6298
VCID-j1fz-gkzw-qbc9 security update CVE-2017-6305
VCID-jhtz-myes-dua9 security update CVE-2017-6301
VCID-mhyf-fp38-u3de security update CVE-2017-6306
VCID-qjgm-8c1m-qbfg security update CVE-2017-6802
VCID-vbsd-6wyd-qfgp security update CVE-2017-6801
VCID-vsdy-7eh2-8yc9 security update CVE-2017-6300
VCID-z8rr-5xpx-eqbb security update CVE-2017-6303

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T01:01:27.185311+00:00 Debian Oval Importer Affected by VCID-4w5v-t22x-5khp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-16T00:46:04.475900+00:00 Debian Oval Importer Affected by VCID-nrgn-8ky2-pyec https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-16T00:41:06.195273+00:00 Debian Oval Importer Fixing VCID-j1fz-gkzw-qbc9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-16T00:31:16.731979+00:00 Debian Oval Importer Affected by VCID-21bd-whcr-ekgv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-16T00:23:59.902022+00:00 Debian Oval Importer Fixing VCID-c3hk-hm71-eqdf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-16T00:21:52.476625+00:00 Debian Oval Importer Fixing VCID-vbsd-6wyd-qfgp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T23:42:27.007972+00:00 Debian Oval Importer Affected by VCID-qkuz-r9a9-vqbx https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T23:33:58.676336+00:00 Debian Oval Importer Fixing VCID-qjgm-8c1m-qbfg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T23:18:42.671664+00:00 Debian Oval Importer Affected by VCID-2zd4-eyeq-27dd https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:21:18.030270+00:00 Debian Oval Importer Affected by VCID-ujwn-5uux-gygu https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:12:12.565260+00:00 Debian Oval Importer Affected by VCID-sag4-mswc-hbg5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:56:46.895640+00:00 Debian Oval Importer Affected by VCID-uar8-sxnf-efhs https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:34:36.487360+00:00 Debian Oval Importer Fixing VCID-jhtz-myes-dua9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:23:14.925739+00:00 Debian Oval Importer Fixing VCID-6bb4-nr6n-wufy https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:02:53.115939+00:00 Debian Oval Importer Fixing VCID-z8rr-5xpx-eqbb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:44:32.890791+00:00 Debian Oval Importer Fixing VCID-mhyf-fp38-u3de https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:15:30.626404+00:00 Debian Oval Importer Fixing VCID-dnnp-fjbz-u7b6 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:08:22.164575+00:00 Debian Oval Importer Affected by VCID-8esx-t2u5-e3hq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:42:02.118256+00:00 Debian Oval Importer Affected by VCID-4vcd-yfbf-2bew https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T17:43:07.388083+00:00 Debian Oval Importer Fixing VCID-cx2k-skx9-j3c6 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:16:05.023021+00:00 Debian Oval Importer Fixing VCID-vsdy-7eh2-8yc9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:12:33.795992+00:00 Debian Oval Importer Fixing VCID-d529-bgrd-6ya7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T15:54:47.610036+00:00 Debian Oval Importer Fixing VCID-d7md-3ueu-puhr https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T15:33:25.244347+00:00 Debian Oval Importer Affected by VCID-efxj-4v6j-fbaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-12T00:33:36.995077+00:00 Debian Oval Importer Affected by VCID-4w5v-t22x-5khp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-12T00:18:38.298186+00:00 Debian Oval Importer Affected by VCID-nrgn-8ky2-pyec https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-12T00:13:57.038513+00:00 Debian Oval Importer Fixing VCID-j1fz-gkzw-qbc9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-12T00:04:34.000724+00:00 Debian Oval Importer Affected by VCID-21bd-whcr-ekgv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T23:57:29.846699+00:00 Debian Oval Importer Fixing VCID-c3hk-hm71-eqdf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T23:55:25.954352+00:00 Debian Oval Importer Fixing VCID-vbsd-6wyd-qfgp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T23:17:12.545219+00:00 Debian Oval Importer Affected by VCID-qkuz-r9a9-vqbx https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T23:09:00.962942+00:00 Debian Oval Importer Fixing VCID-qjgm-8c1m-qbfg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T22:54:20.562931+00:00 Debian Oval Importer Affected by VCID-2zd4-eyeq-27dd https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T21:00:51.369802+00:00 Debian Oval Importer Affected by VCID-ujwn-5uux-gygu https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:52:03.523727+00:00 Debian Oval Importer Affected by VCID-sag4-mswc-hbg5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:37:09.180739+00:00 Debian Oval Importer Affected by VCID-uar8-sxnf-efhs https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:15:52.063808+00:00 Debian Oval Importer Fixing VCID-jhtz-myes-dua9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:04:51.702003+00:00 Debian Oval Importer Fixing VCID-6bb4-nr6n-wufy https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T19:44:39.426827+00:00 Debian Oval Importer Fixing VCID-z8rr-5xpx-eqbb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T19:27:00.062384+00:00 Debian Oval Importer Fixing VCID-mhyf-fp38-u3de https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:58:59.657808+00:00 Debian Oval Importer Fixing VCID-dnnp-fjbz-u7b6 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:52:08.178079+00:00 Debian Oval Importer Affected by VCID-8esx-t2u5-e3hq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:26:25.433504+00:00 Debian Oval Importer Affected by VCID-4vcd-yfbf-2bew https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:29:11.384818+00:00 Debian Oval Importer Fixing VCID-cx2k-skx9-j3c6 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T16:03:25.958974+00:00 Debian Oval Importer Fixing VCID-vsdy-7eh2-8yc9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T15:59:58.946217+00:00 Debian Oval Importer Fixing VCID-d529-bgrd-6ya7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T15:42:26.793045+00:00 Debian Oval Importer Fixing VCID-d7md-3ueu-puhr https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T15:21:24.336866+00:00 Debian Oval Importer Affected by VCID-efxj-4v6j-fbaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-09T00:03:50.171800+00:00 Debian Oval Importer Affected by VCID-4w5v-t22x-5khp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T23:49:30.495145+00:00 Debian Oval Importer Affected by VCID-nrgn-8ky2-pyec https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T23:44:56.195282+00:00 Debian Oval Importer Fixing VCID-j1fz-gkzw-qbc9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T23:35:51.525741+00:00 Debian Oval Importer Affected by VCID-21bd-whcr-ekgv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T23:29:12.103743+00:00 Debian Oval Importer Fixing VCID-c3hk-hm71-eqdf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T23:27:14.778162+00:00 Debian Oval Importer Fixing VCID-vbsd-6wyd-qfgp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T22:50:39.430061+00:00 Debian Oval Importer Affected by VCID-qkuz-r9a9-vqbx https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T22:42:42.978141+00:00 Debian Oval Importer Fixing VCID-qjgm-8c1m-qbfg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T22:28:45.357656+00:00 Debian Oval Importer Affected by VCID-2zd4-eyeq-27dd https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:40:05.925712+00:00 Debian Oval Importer Affected by VCID-ujwn-5uux-gygu https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:31:37.042736+00:00 Debian Oval Importer Affected by VCID-sag4-mswc-hbg5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:17:14.617556+00:00 Debian Oval Importer Affected by VCID-uar8-sxnf-efhs https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:56:52.900767+00:00 Debian Oval Importer Fixing VCID-jhtz-myes-dua9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:46:27.535786+00:00 Debian Oval Importer Fixing VCID-6bb4-nr6n-wufy https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:27:27.761885+00:00 Debian Oval Importer Fixing VCID-z8rr-5xpx-eqbb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:10:32.683848+00:00 Debian Oval Importer Fixing VCID-mhyf-fp38-u3de https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:43:33.247885+00:00 Debian Oval Importer Fixing VCID-dnnp-fjbz-u7b6 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:36:55.391244+00:00 Debian Oval Importer Affected by VCID-8esx-t2u5-e3hq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:12:15.934369+00:00 Debian Oval Importer Affected by VCID-4vcd-yfbf-2bew https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:17:09.401184+00:00 Debian Oval Importer Fixing VCID-cx2k-skx9-j3c6 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T15:56:18.850559+00:00 Debian Oval Importer Fixing VCID-vsdy-7eh2-8yc9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T15:53:02.721250+00:00 Debian Oval Importer Fixing VCID-d529-bgrd-6ya7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T15:36:15.242604+00:00 Debian Oval Importer Fixing VCID-d7md-3ueu-puhr https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T15:16:03.860995+00:00 Debian Oval Importer Affected by VCID-efxj-4v6j-fbaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0