vulnerability

Debian: CVE-2017-12142: libytnef -- security update

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:P)

Published

Aug 2, 2017

Added

Jul 30, 2024

Modified

Mar 30, 2026

Description

In ytnef 1.9.2, an invalid memory read vulnerability was found in the function SwapDWord in ytnef.c, which allows attackers to cause a denial of service via a crafted file.

Solution

debian-upgrade-libytnef

References

CVE-2017-12142
https://attackerkb.com/topics/CVE-2017-12142
CWE-125
EUVD-EUVD-2017-3726
https://euvd.enisa.europa.eu/vulnerability/EUVD-2017-3726

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report