NULL Pointer Dereference Affecting libetpan Open this link in a new tab package, versions >=0.0.0
Attack Complexity
Low
Availability
High
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications-
snyk-id
SNYK-COCOAPODS-LIBETPAN-472126
-
published
8 Oct 2019
-
disclosed
8 May 2017
-
credit
Unknown
Introduced: 8 May 2017
CVE-2017-8825 Open this link in a new tabHow to fix?
There is no fixed version for libetpan
.
Overview
libetpan is a portable, efficient framework for different kinds of mail access: IMAP, SMTP, POP and NNTP.
Affected versions of this package are vulnerable to NULL Pointer Dereference. A null dereference vulnerability has been found in the MIME handling component, as used in MailCore and MailCore 2. A crash can occur in low-level/imf/mailimf.c
during a failed parse of a CC
header , containing multiple e-mail addresses.