Lucene search
Gentoo FoundationMGASA-2022-0316HistorySep 02, 2022 - 10:59 p.m.
Updated ytnef packages fix security vulnerability
2022-09-0222:59:37
Gentoo Foundation
advisories.mageia.org
19
0.002 Low
EPSS
Percentile
55.5%
In ytnef 1.9.3, the TNEFSubjectHandler function in lib/ytnef.c allows remote attackers to cause a denial-of-service (and potentially code execution) due to a double free which can be triggered via a crafted file. (CVE-2021-3403) In ytnef 1.9.3, the SwapWord function in lib/ytnef.c allows remote attackers to cause a denial-of-service (and potentially code execution) due to a heap buffer overflow which can be triggered via a crafted file. (CVE-2021-3404)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 8 | noarch | ytnef | < 2.0-1 | ytnef-2.0-1.mga8 |
Related
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0316)
2022-09-05 00:00:00
nessus
nessus
GLSA-202405-24 : ytnef: Multiple Vulnerabilities
2024-05-08 00:00:00
gentoo
gentoo
ytnef: Multiple Vulnerabilities
2024-05-08 00:00:00
osv
osv
CVE-2021-3404
2021-03-04 22:15:14
CVE-2021-3403
2021-03-04 22:15:14
cve
cve
CVE-2021-3404
2021-03-04 22:15:00
CVE-2021-3403
2021-03-04 22:15:00
prion
prion
Heap overflow
2021-03-04 22:15:00
Double free
2021-03-04 22:15:00
debiancve
debiancve
CVE-2021-3404
2021-03-04 22:15:00
CVE-2021-3403
2021-03-04 22:15:00
ubuntucve
ubuntucve
CVE-2021-3404
2021-03-04 00:00:00
CVE-2021-3403
2021-03-04 00:00:00
cvelist
cvelist
CVE-2021-3403
2021-03-04 21:10:50
CVE-2021-3404
2021-03-04 21:10:57
veracode
veracode
Denial Of Service (DoS)
2021-04-29 10:27:38
Denial Of Service (DoS)
2021-04-29 10:27:42
alpinelinux
alpinelinux
CVE-2021-3404
2021-03-04 22:15:00
CVE-2021-3403
2021-03-04 22:15:00