CVE-2017-9473

2017-06-0704:50:00

mitre

www.cve.org

6.8 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.9%

JSON

In ytnef 1.9.2, the TNEFFillMapi function in lib/ytnef.c allows remote attackers to cause a denial of service (memory consumption) via a crafted file.

References

blogs.gentoo.org/ago/2017/05/24/ytnef-memory-allocation-failure-in-tneffillmapi-ytnef-c/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFJWMUEUC4ILH2HEOCYVVLQT654ZMCGQ/

usn.ubuntu.com/3667-1/