All errata/sisyphus/ALT-PU-2017-1756-1
ALT-PU-2017-1756-1

Package update libetpan in branch sisyphus

Version1.8-alt1
Task#184498
Published2017-06-19
Max severityHIGH
Severity:

Closed issues (1)

CVE-2017-8825
HIGH7.5

A null dereference vulnerability has been found in the MIME handling component of LibEtPan before 1.8, as used in MailCore and MailCore 2. A crash can occur in low-level/imf/mailimf.c during a failed parse of a Cc header containing multiple e-mail addresses.

Published: 2017-05-08Modified: 2025-04-20
CVSS 2.0MEDIUM 5.0
CVSS:2.0/AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS 3.xHIGH 7.5
CVSS:3.x/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References