Debian Libytnef vulnerabilities

25 known vulnerabilities affecting debian/libytnef.

Total CVEs
25
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH14MEDIUM3LOW8

Vulnerabilities

Page 2 of 2
CVE-2017-9472LOWCVSS 5.5fixed in libytnef 1.9.3-1 (bookworm)2017
CVE-2017-9472 [MEDIUM] CVE-2017-9472: libytnef - In ytnef 1.9.2, the SwapDWord function in lib/ytnef.c allows remote attackers to... In ytnef 1.9.2, the SwapDWord function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. Scope: local bookworm: resolved (fixed in 1.9.3-1) bullseye: resolved (fixed in 1.9.3-1) forky: resolved (fixed in 1.9.3-1) sid: resolved (fixed in 1.9.3-1) trixie: resolved (fixed in 1.9.
debian
CVE-2017-9473LOWCVSS 5.5fixed in libytnef 1.9.3-1 (bookworm)2017
CVE-2017-9473 [MEDIUM] CVE-2017-9473: libytnef - In ytnef 1.9.2, the TNEFFillMapi function in lib/ytnef.c allows remote attackers... In ytnef 1.9.2, the TNEFFillMapi function in lib/ytnef.c allows remote attackers to cause a denial of service (memory consumption) via a crafted file. Scope: local bookworm: resolved (fixed in 1.9.3-1) bullseye: resolved (fixed in 1.9.3-1) forky: resolved (fixed in 1.9.3-1) sid: resolved (fixed in 1.9.3-1) trixie: resolved (fixed in 1.9.3-1)
debian
CVE-2017-12142LOWCVSS 5.5fixed in libytnef 1.9.3-1 (bookworm)2017
CVE-2017-12142 [MEDIUM] CVE-2017-12142: libytnef - In ytnef 1.9.2, an invalid memory read vulnerability was found in the function S... In ytnef 1.9.2, an invalid memory read vulnerability was found in the function SwapDWord in ytnef.c, which allows attackers to cause a denial of service via a crafted file. Scope: local bookworm: resolved (fixed in 1.9.3-1) bullseye: resolved (fixed in 1.9.3-1) forky: resolved (fixed in 1.9.3-1) sid: resolved (fixed in 1.9.3-1) trixie: resolved (fixed in 1.9.3-1)
debian
CVE-2017-9474LOWCVSS 5.5fixed in libytnef 1.9.3-1 (bookworm)2017
CVE-2017-9474 [MEDIUM] CVE-2017-9474: libytnef - In ytnef 1.9.2, the DecompressRTF function in lib/ytnef.c allows remote attacker... In ytnef 1.9.2, the DecompressRTF function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. Scope: local bookworm: resolved (fixed in 1.9.3-1) bullseye: resolved (fixed in 1.9.3-1) forky: resolved (fixed in 1.9.3-1) sid: resolved (fixed in 1.9.3-1) trixie: resolved (fixed in
debian
CVE-2010-5109MEDIUMCVSS 4.3fixed in claws-mail 3.11.1-2 (bookworm)2010
CVE-2010-5109 [MEDIUM] CVE-2010-5109: claws-mail - Off-by-one error in the DecompressRTF function in ytnef.c in Yerase's TNEF Strea... Off-by-one error in the DecompressRTF function in ytnef.c in Yerase's TNEF Stream Reader allows remote attackers to cause a denial of service (crash) via a crafted TNEF file, which triggers a buffer overflow. Scope: local bookworm: resolved (fixed in 3.11.1-2) bullseye: resolved (fixed in 3.11.1-2) forky: resolved (fixed in 3.11.1-2) sid: resolved (fixed in 3.11.
debian
← Previous2 / 2