Search for packages
| purl | pkg:deb/debian/libytnef@1.9.3-3?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-21bd-whcr-ekgv | In ytnef 1.9.2, a heap-based buffer overflow vulnerability was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file. |
CVE-2017-12141
|
| VCID-2zd4-eyeq-27dd | In ytnef 1.9.2, the SwapWord function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. |
CVE-2017-9471
|
| VCID-4vcd-yfbf-2bew | Multiple vulnerabilities have been discovered in ytnef, the worst of which could potentially lead to remote code execution. |
CVE-2021-3404
|
| VCID-4w5v-t22x-5khp | Multiple vulnerabilities have been discovered in ytnef, the worst of which could potentially lead to remote code execution. |
CVE-2021-3403
|
| VCID-6bb4-nr6n-wufy | security update |
CVE-2017-6304
|
| VCID-8esx-t2u5-e3hq | The TNEFFillMapi function in lib/ytnef.c in libytnef in ytnef through 1.9.2 does not ensure a nonzero count value before a certain memory allocation, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted tnef file. |
CVE-2017-9146
|
| VCID-c3hk-hm71-eqdf | security update |
CVE-2017-6800
|
| VCID-cx2k-skx9-j3c6 | security update |
CVE-2017-6299
|
| VCID-d529-bgrd-6ya7 | security update |
CVE-2017-6302
|
| VCID-d7md-3ueu-puhr | In libytnef in ytnef through 1.9.2, there is a heap-based buffer over-read due to incorrect boundary checking in the SIZECHECK macro in lib/ytnef.c. |
CVE-2017-9058
|
| VCID-dnnp-fjbz-u7b6 | security update |
CVE-2017-6298
|
| VCID-efxj-4v6j-fbaa | In ytnef 1.9.2, the DecompressRTF function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. |
CVE-2017-9474
|
| VCID-j1fz-gkzw-qbc9 | security update |
CVE-2017-6305
|
| VCID-jhtz-myes-dua9 | security update |
CVE-2017-6301
|
| VCID-mhyf-fp38-u3de | security update |
CVE-2017-6306
|
| VCID-nrgn-8ky2-pyec | In ytnef 1.9.2, an invalid memory read vulnerability was found in the function SwapDWord in ytnef.c, which allows attackers to cause a denial of service via a crafted file. |
CVE-2017-12142
|
| VCID-qjgm-8c1m-qbfg | security update |
CVE-2017-6802
|
| VCID-qkuz-r9a9-vqbx | In ytnef 1.9.2, the SwapDWord function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. |
CVE-2017-9472
|
| VCID-sag4-mswc-hbg5 | In ytnef 1.9.2, the TNEFFillMapi function in lib/ytnef.c allows remote attackers to cause a denial of service (memory consumption) via a crafted file. |
CVE-2017-9473
|
| VCID-uar8-sxnf-efhs | In ytnef 1.9.2, an allocation failure was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file. |
CVE-2017-12144
|
| VCID-ujwn-5uux-gygu | In ytnef 1.9.2, the MAPIPrint function in lib/ytnef.c allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file. |
CVE-2017-9470
|
| VCID-vbsd-6wyd-qfgp | security update |
CVE-2017-6801
|
| VCID-vsdy-7eh2-8yc9 | security update |
CVE-2017-6300
|
| VCID-z8rr-5xpx-eqbb | security update |
CVE-2017-6303
|
| VCID-zaqk-yw24-t7h1 | Off-by-one error in the DecompressRTF function in ytnef.c in Yerase's TNEF Stream Reader allows remote attackers to cause a denial of service (crash) via a crafted TNEF file, which triggers a buffer overflow. |
CVE-2010-5109
|