Sign in Get started

← All advisories

Critical severity9.8NVD Advisory· Published May 18, 2017· Updated May 13, 2026

CVE-2017-9058

CVE-2017-9058

Description

In libytnef in ytnef through 1.9.2, there is a heap-based buffer over-read due to incorrect boundary checking in the SIZECHECK macro in lib/ytnef.c.

Affected products

2

Ytnef Project/Ytnef
cpe:2.3:a:ytnef_project:ytnef:*:*:*:*:*:*:*:*
Range: <=1.9.2
Canonical/Ubuntu Linux
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

bugs.debian.org/cgi-bin/bugreport.cginvdIssue TrackingPatchThird Party Advisory
usn.ubuntu.com/3667-1/nvdThird Party Advisory
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFJWMUEUC4ILH2HEOCYVVLQT654ZMCGQ/nvd

News mentions

0

No linked articles in our index yet.