14 matches found
Mageia: Security Advisory (MGASA-2017-0209)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DLA-962-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 27 : tnef (2017-8489b17872)
Update to 1.4.15. Fixes CVE-2017-8911 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVE...
openSUSE Security Update : tnef (openSUSE-2017-1307)
This update for tnef fixes the following issues : Security issue fixed : - CVE-2017-8911: Fix underflow problem boo1038837. Bug fixes : - Update to version 1.4.15 : - Use builtinmuloverflow when available. - Fixing Unicode related bugs introduced in previous release. - Prevent against various cas...
Fedora Update for tnef FEDORA-2017-2b28a055f2
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for tnef FEDORA-2017-c2882ae75b
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 26 : tnef (2017-c2882ae75b)
Update to 1.4.15. Fixes CVE-2017-8911 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVE...
Fedora 25 : tnef (2017-2b28a055f2)
Update to 1.4.15. Fixes CVE-2017-8911 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVE...
Updated tnef packages fix security vulnerability
It was discovered that tnef did not correctly validate its input. An attacker could exploit this by tricking a user into opening a malicious attachment, which would result in a denial-of-service by application crash CVE-2017-8911...
[SECURITY] [DSA 3869-1] tnef security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3869-1 [email protected] https://www.debian.org/security/ Sebastien Delafond June 01, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3869-1] tnef security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3869-1 [email protected] https://www.debian.org/security/ Sebastien Delafond June 01, 2017 https://www.debian.org/security/faq -...
Debian DSA-3869-1 : tnef - security update
It was discovered that tnef, a tool used to unpack MIME attachments of type 'application/ms-tnef', did not correctly validate its input. An attacker could exploit this by tricking a user into opening a malicious attachment, which would result in a denial-of-service by application crash...
Debian DLA-962-1 : tnef security update
CVE-2017-8911 An integer underflow has been identified in the unicodetoutf8 function in tnef 1.4.14. This might lead to invalid write operations, controlled by an attacker. For Debian 7 'Wheezy', these problems have been fixed in version 1.4.9-1+deb7u3. We recommend that you upgrade your tnef...
CVE-2017-8911
CVE-2017-8911 affects the tnef package (version 1.4.14) where an integer underflow in unicode_to_utf8() can lead to an invalid write, enabling an attacker to potentially exploit the issue. Public advisories and Nessus/OpenSUSE/Fedora entries document a fix to version 1.4.15, mitigating the underf...