ytnef is vulnerable to denial of service. The TNEFSubjectHandler function in lib/ytnef.c allows remote attackers to cause a denial-of-service (and potentially code execution) due to a double free which can be triggered via a crafted file.
CPE | Name | Operator | Version |
---|---|---|---|
ytnef:edge | eq | 1.9.3-r0 | |
ytnef:3.13 | eq | 1.9.3-r0 | |
ytnef:edge | eq | 1.9.3-r0 | |
ytnef:3.13 | eq | 1.9.3-r0 |