CVE-2017-12142

Priority
Description
In ytnef 1.9.2, an invalid memory read vulnerability was found in the
function SwapDWord in ytnef.c, which allows attackers to cause a denial of
service via a crafted file.
Notes
leosilvathe issue resides in ytnefprint/main.c that is not present
in trusty.
Package
Upstream:released (1.9.3-1)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected [code not present])
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):needed
Ubuntu 20.04 LTS (Focal Fossa):not-affected (1.9.3-1)
Ubuntu 20.10 (Groovy Gorilla):not-affected (1.9.3-1)
Patches:
Other:https://github.com/Yeraze/ytnef/commit/35dc50190aac54947bafb3d84ab7727e940c6236
More Information

Updated: 2020-10-24 06:37:47 UTC (commit 69e225d81a6ee3e2e014950178db797c5d4e5009)