UBUNTU-CVE-2017-6308

See a problem?

Source

https://ubuntu.com/security/CVE-2017-6308

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2017/UBUNTU-CVE-2017-6308.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2017-6308

Related

CVE-2017-6308

Published

2017-02-24T04:59:00Z

Modified

2017-02-24T04:59:00Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An issue was discovered in tnef before 1.4.13. Several Integer Overflows, which can lead to Heap Overflows, have been identified in the functions that wrap memory allocation.

References

Affected packages

Ubuntu:14.04:LTS / tnef

Package

Name: tnef
Purl: pkg:deb/ubuntu/tnef?arch=src?distro=trusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.4.9-1+deb8u2build0.14.04.1

Affected versions

1.*

1.4.9-1

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "binary_version": "1.4.9-1+deb8u2build0.14.04.1",
            "binary_name": "tnef"
        },
        {
            "binary_version": "1.4.9-1+deb8u2build0.14.04.1",
            "binary_name": "tnef-dbgsym"
        }
    ]
}

Ubuntu:16.04:LTS / tnef

Package

Name: tnef
Purl: pkg:deb/ubuntu/tnef?arch=src?distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.4.9-1+deb8u2build0.16.04.1

Affected versions

1.*

1.4.9-1

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "binary_version": "1.4.9-1+deb8u2build0.16.04.1",
            "binary_name": "tnef"
        },
        {
            "binary_version": "1.4.9-1+deb8u2build0.16.04.1",
            "binary_name": "tnef-dbgsym"
        }
    ]
}