CVE-2017-9146
https://notcve.org/view.php?id=CVE-2017-9146
The TNEFFillMapi function in lib/ytnef.c in libytnef in ytnef through 1.9.2 does not ensure a nonzero count value before a certain memory allocation, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted tnef file. La función TNEFFillMapi en lib / ytnef.c en libytnef in ytnef hasta 1.9.2 no garantiza un valor de conteo distinto de cero antes de una cierta asignación de memoria, lo que permite a los atacantes remotos causar una denegación de servicio (desbordamiento de buffer basado en saturación y bloqueo de la aplicación) o posiblemente tenga otro impacto no especificado a través de un archivo tnef diseñado. • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862707 https://github.com/Yeraze/ytnef/issues/47 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFJWMUEUC4ILH2HEOCYVVLQT654ZMCGQ https://usn.ubuntu.com/3667-1 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-9058
https://notcve.org/view.php?id=CVE-2017-9058
In libytnef in ytnef through 1.9.2, there is a heap-based buffer over-read due to incorrect boundary checking in the SIZECHECK macro in lib/ytnef.c. En libytnef en ytnef hasta la versión 1.9.2 hay una sobrelectura de búfer basado en memoria dinámica (heap) debido a una comprobación de límites en la macro SIZECHECK en lib/ytnef.c. • https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862556 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFJWMUEUC4ILH2HEOCYVVLQT654ZMCGQ https://usn.ubuntu.com/3667-1 • CWE-125: Out-of-bounds Read •
CVE-2017-6802
https://notcve.org/view.php?id=CVE-2017-6802
An issue was discovered in ytnef before 1.9.2. There is a potential heap-based buffer over-read on incoming Compressed RTF Streams, related to DecompressRTF() in libytnef. Se ha descubierto un problema en ytnef en versiones anteriores a 1.9.2. Hay una potencial sobre lectura de búfer basado en memoria dinámica en el entrante Compressed RTF Streams, relacionado con DecompressRTF() en libytnef. • http://www.debian.org/security/2017/dsa-3846 https://github.com/Yeraze/ytnef/commit/22f8346c8d4f0020a40d9f258fdb3bfc097359cc https://github.com/Yeraze/ytnef/issues/34 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFJWMUEUC4ILH2HEOCYVVLQT654ZMCGQ • CWE-125: Out-of-bounds Read •
CVE-2017-6801
https://notcve.org/view.php?id=CVE-2017-6801
An issue was discovered in ytnef before 1.9.2. There is a potential out-of-bounds access with fields of Size 0 in TNEFParse() in libytnef. Se ha descubierto un problema en ytnef en versiones anteriores a 1.9.2. Hay un potencial acceso fuera de límites con con campos de tamaño 0 en TNEFParse() en libytnef. • http://www.debian.org/security/2017/dsa-3846 https://github.com/Yeraze/ytnef/commit/3cb0f914d6427073f262e1b2b5fd973e3043cdf7 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFJWMUEUC4ILH2HEOCYVVLQT654ZMCGQ • CWE-125: Out-of-bounds Read •
CVE-2017-6800
https://notcve.org/view.php?id=CVE-2017-6800
An issue was discovered in ytnef before 1.9.2. An invalid memory access (heap-based buffer over-read) can occur during handling of LONG data types, related to MAPIPrint() in libytnef. Se ha descubierto un problema en ytnef en versiones anteriores a 1.9.2. Un acceso de memoria no válido (sobre lectura de búfer basado en memoria dinámica) puede ocurrir durante el manejo de tipos de datos LONG, relacionados con MAPIPrint() en libytnef. • http://www.debian.org/security/2017/dsa-3846 https://github.com/Yeraze/ytnef/commit/f98f5d4adc1c4bd4033638f6167c1bb95d642f89 https://github.com/Yeraze/ytnef/issues/28 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFJWMUEUC4ILH2HEOCYVVLQT654ZMCGQ • CWE-125: Out-of-bounds Read •