CVE-2017-8825

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2017-8825
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-8825.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2017-8825
Downstream
Related
Published
2017-05-08T16:29:00.177Z
Modified
2025-11-20T10:43:51.693456Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

A null dereference vulnerability has been found in the MIME handling component of LibEtPan before 1.8, as used in MailCore and MailCore 2. A crash can occur in low-level/imf/mailimf.c during a failed parse of a Cc header containing multiple e-mail addresses.

References

Affected packages

Git / github.com/dinhvh/libetpan

Affected ranges

Type
GIT
Repo
https://github.com/dinhvh/libetpan
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
1fe8fbc032ccda1db9af66d93016b49c16c1f22d
Fixed
fcbe81e025c01fab1fb807a4aebf7291b3e65253

Affected versions

1.*

1.2
1.2.pre1
1.3.pre1
1.3.pre2
1.4
1.4.1
1.5
1.6
1.7
1.7.2

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-8825.json"

vanir_signatures

[
    {
        "target": {
            "file": "src/low-level/imf/mailimf.c"
        },
        "id": "CVE-2017-8825-43d77132",
        "deprecated": false,
        "signature_type": "Line",
        "source": "https://github.com/dinhvh/libetpan/commit/1fe8fbc032ccda1db9af66d93016b49c16c1f22d",
        "signature_version": "v1",
        "digest": {
            "line_hashes": [
                "67007479827530995988954969792065200344",
                "237296506629283453617497657190448271518",
                "242672852381181053063557447058015321230",
                "71112445817109240215460298007740484124",
                "199721375279478880216943451353382181441",
                "1384152481488305381244308223868773348",
                "223283509090985959545044880308628582645",
                "212688512232270646539260903353698900295"
            ],
            "threshold": 0.9
        }
    },
    {
        "target": {
            "function": "mailimf_group_parse",
            "file": "src/low-level/imf/mailimf.c"
        },
        "id": "CVE-2017-8825-46a8c00b",
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://github.com/dinhvh/libetpan/commit/1fe8fbc032ccda1db9af66d93016b49c16c1f22d",
        "signature_version": "v1",
        "digest": {
            "function_hash": "126102935708842475007779073441540878489",
            "length": 1166.0
        }
    }
]

Git / github.com/dinhviethoa/libetpan

Affected ranges

Type
GIT
Repo
https://github.com/dinhviethoa/libetpan
Events
Introduced
0 Unknown introduced commit / All previous commits are affected

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-8825.json"