VDB
GCVE-110-MAGEIA-2016-67
GCVE-110-MAGEIA-2016-67
Advisory Published
Updated claws-mail fix security vulnerabilities
A stack-based buffer overflow has been found in conv_euctojis() after applying
incomplete patch for CVE-2015-8614. In conv_euctojis() the comparison is with
outlen - 3, but each pass through the loop uses up to 5 bytes and the rest of
the function may add another 4 bytes. The comparison should presumably be
'<= outlen - 9' or equivalently '< outlen - 8'. (CVE-2015-8708)
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | claws-mail | 3.11.1-3.1.mga5 (unaffected), 0 (affected), 3.11.1-3.1.mga5 (unaffected), 0 (affected) | — |
| Mageia | msec | 0 (affected), 1.15-1.mga5 (unaffected) | — |
Aliases
References
Browse GCVE Records
72,921 records in the GCVE database · Updated July 15, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.