Package: release.debian.org
Severity: normal
User: release.debian....@packages.debian.org
Usertags: unblock
Please unblock package libytnef
Upstream continued work on security aspects of the code and fixed another
three issues.
[CVE-2017-6800] Invalid memory access (heap overrun) in handling
LONG data types
[CVE-2017-6801] Missing check for fields of size 0
[CVE-2017-6802] Potential buffer overrun in compressed RTF streams
unblock libytnef/1.9.2-1
This version has a seldomly used binary being renamed (removes the .pl suffix),
but it's been present in debian for 1.5 months only so I guess it's not a big
deal.
-- System Information:
Debian Release: 9.0
APT prefers unstable-debug
APT policy: (500, 'unstable-debug'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.9.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=ca_ES.UTF-8, LC_CTYPE=ca_ES.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
