Pretty sure this also affects bionic and cosmic
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1666884
Title:
libytnef: February 2017 multiple vulnerabilities (X41-2017-002)
To manage notifications
Apologies for the late reply, I neglected to enable notifications...
No, I just meant that the unpatched Trusty package isn't safe just
because it doesn't contain ytnef/ytnefprint binaries. You have it right,
the single patch you mention will be enough to address CVE-2017-9058. It
should replace t
Hi, I implemented those fixes to libytnef. Yeraze has just released
1.9.3 so I'm interested to see if/when it will make it to Ubuntu, and to
which releases.
The ytnef and ytnefprint binaries just call libytnef, both the wrong and
the right fixes to CVE-2017-9068 are definitely part of the library,