Branch t7 update bulletin.

Package claws-mail updated to version 3.14.0-alt0.M70P.1 for branch t7 in task 169034.

Published: 2016-04-12
Modified: 2024-11-21

CVE-2015-8708

Stack-based buffer overflow in the conv_euctojis function in codeconv.c in Claws Mail 3.13.1 allows remote attackers to have unspecified impact via a crafted email, involving Japanese character set conversion. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8614.

Severity: HIGH (7.3) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

References:

[oss-security] 20151231 Re: mail-client/claws-mail-3.13.1: Stack Overflow - CVE needed?
[oss-security] 20151231 Re: mail-client/claws-mail-3.13.1: Stack Overflow - CVE needed?
GLSA-201606-11
GLSA-201606-11

Package keepnote updated to version 0.7.8-alt1.M70P.1 for branch t7 in task 169034.

Обновить до версии 0.7.8

Version: 2.1.0

Branch t7 update on 2016-09-05

ALT-BU-2016-2969-1

ALT-PU-2016-1910-1

Closed vulnerabilities

CVE-2015-8708

ALT-PU-2016-1911-1

Closed bugs

Bug #32442