VDB
GCVE-110-MAGEIA-2017-174
GCVE-110-MAGEIA-2017-174
Advisory Published
Several issues were discovered in libytnef, a library used to decode
application/ms-tnef e-mail attachments. Multiple heap overflows,
out-of-bound writes and reads, NULL pointer dereferences and infinite
loops could be exploited by tricking a user into opening a maliciously
crafted winmail.dat file (CVE-2017-6298, CVE-2017-6299, CVE-2017-6300,
CVE-2017-6301, CVE-2017-6302, CVE-2017-6303, CVE-2017-6304,
CVE-2017-6305, CVE-2017-6306, CVE-2017-6800, CVE-2017-6801,
CVE-2017-6802).
A heap-buffer-overflow vulnerability in libytnef due to an incorrect
boundary checking in SIZECHCK macro in lib/ytnef.c (CVE-2017-9058).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | libytnef | 0 (affected), 1.5-10.2.mga5 (unaffected) | — |
References
Browse GCVE Records
73,161 records in the GCVE database · Updated July 16, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.