{"id":"MGASA-2017-0209","summary":"Updated tnef packages fix security vulnerability","details":"It was discovered that tnef did not correctly validate its input. An\nattacker could exploit this by tricking a user into opening a malicious\nattachment, which would result in a denial-of-service by application\ncrash (CVE-2017-8911).\n","modified":"2026-01-31T15:52:23.987431Z","published":"2017-07-22T08:42:57Z","related":["CVE-2017-8911"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2017-0209.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=21013"},{"type":"REPORT","url":"https://www.debian.org/security/2017/dsa-3869"}],"affected":[{"package":{"name":"tnef","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/tnef?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.4.15-1.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2017-0209.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}