Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2015-8614

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple stack-based buffer overflows in the 1 convjistoeuc, 2 conveuctojis, and 3 convsjistoeuc functions in codeconv.c in Claws Mail before 3.13.1 allow remot...

7.5CVSS7.8AI score0.02554EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.18 views

Debian: Security Advisory (DLA-383-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.02554EPSS
Exploits0References2
CVE
CVE
added 2016/04/11 9:0 p.m.81 views

CVE-2015-8614

Claws Mail (GTK-based email client) is affected by a stack-based buffer overflow in codeconv.c (conv_jistoeuc, conv_euctojis, conv_sjistoeuc) that can be triggered by a crafted email containing Japanese character set conversions. Affects versions before 3.13.1; CVE-2015-8708 notes this is an inco...

7.5CVSS5.5AI score0.02554EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.21 views

Fedora 22 : claws-mail-3.13.1-4.fc22 (2015-3a073171c3)

Update from 3.12.0 to 3.13.1 for bug-fixes. Includes security fix for CVE-2015-8614. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

7.5CVSS7.2AI score0.02554EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.18 views

Fedora 23 : claws-mail-3.13.1-4.fc23 (2015-aa14be8d92)

Update from 3.12.0 to 3.13.1 for bug-fixes. Includes security fix for CVE-2015-8614. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

7.5CVSS7.2AI score0.02554EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/02/18 12:0 a.m.17 views

openSUSE Security Update : claws-mail (openSUSE-2016-219)

This update for claws-mail fixes the following issues : - CVE-2015-8614: additional fixes for buffer overrun issues which allowed remote attackers to cause a crash or have unspecified further impact boo959993 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

7.5CVSS7.5AI score0.02554EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/02/17 12:0 a.m.29 views

openSUSE Security Update : claws-mail (openSUSE-2016-214)

This update for claws-mail fixes the following issues : - CVE-2015-8614: additional fixes for buffer overrun issues which allowed remote attackers to cause a crash or have unspecified further impact boo959993 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

7.5CVSS7.5AI score0.02554EPSS
Exploits0References2
Debian
Debian
added 2016/01/23 6:30 a.m.24 views

[SECURITY] [DSA 3452-1] claws-mail security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3452-1 [email protected] https://www.debian.org/security/ Ben Hutchings January 23, 2016 https://www.debian.org/security/faq -...

7.5CVSS7.2AI score0.02554EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/01/20 12:0 a.m.19 views

FreeBSD : claws-mail -- no bounds checking on the output buffer in conv_jistoeuc, conv_euctojis, conv_sjistoeuc (51358314-bec8-11e5-82cd-bcaec524bf84)

DrWhax reports : So in codeconv.c there is a function for Japanese character set conversion called convjistoeuc. There is no bounds checking on the output buffer, which is created on the stack with alloca Bug can be triggered by sending an email to [email protected] or whatever. Since my C is...

7.5CVSS7.1AI score0.02554EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2016/01/14 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2016-0008)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.6AI score0.02554EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2016/01/13 12:0 a.m.31 views

Debian DLA-383-1 : claws-mail security update

'DrWhax' of the Tails project reported that Claws Mail is missing range checks in some text conversion functions. A remote attacker could exploit this to run arbitrary code under the account of a user that receives a message from them using Claws Mail. CVE-2015-8614 There were no checks on the...

7.5CVSS7.7AI score0.02554EPSS
Exploits0References3
Debian
Debian
added 2016/01/12 11:3 p.m.28 views

[SECURITY] [DLA 383-1] claws-mail security update

Package : claws-mail Version : 3.7.6-4+squeeze2 CVE ID : CVE-2015-8614 CVE-2015-8708 "DrWhax" of the Tails project reported that Claws Mail is missing range checks in some text conversion functions. A remote attacker could exploit this to run arbitrary code under the account...

7.5CVSS7.4AI score0.02554EPSS
Exploits0
Mageia
Mageia
added 2016/01/12 9:13 a.m.33 views

Updated claws-mail packages fix security vulnerability

no bounds checking on the output buffer in convjistoeuc, conveuctojis, convsjistoeuc A Tails contributor found a vulnerability in claws-mail where in codeconv.c a function for japanese character set conversion called convjistoeuc has no bounds checking on the output buffer which is created on the...

7.5CVSS7.1AI score0.02554EPSS
Exploits0References3
OSV
OSV
added 2016/01/12 12:0 a.m.27 views

DLA-383-1 claws-mail - security update

Bulletin has no description...

7.5CVSS5.2AI score0.02554EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/01/04 12:0 a.m.21 views

openSUSE Security Update : claws-mail (openSUSE-2016-1)

This update for claws-mail fixes the following security issue : - CVE-2015-8614: buffer overrun issues in Japanese character set conversion code could allow an adversary to remotely crash claws and potentially have further unspecified impact boo959993 %NASLMINLEVEL 70300 C Tenable Network Securit...

7.5CVSS7.6AI score0.02554EPSS
Exploits0References2
Rows per page
Query Builder