{"id":"CVE-2017-8825","details":"A null dereference vulnerability has been found in the MIME handling component of LibEtPan before 1.8, as used in MailCore and MailCore 2. A crash can occur in low-level/imf/mailimf.c during a failed parse of a Cc header containing multiple e-mail addresses.","modified":"2026-04-16T06:17:01.990993419Z","published":"2017-05-08T16:29:00.177Z","related":["openSUSE-SU-2024:10938-1"],"references":[{"type":"ADVISORY","url":"https://github.com/dinhviethoa/libetpan/issues/274"},{"type":"ADVISORY","url":"https://github.com/dinhviethoa/libetpan/releases/tag/1.8"},{"type":"FIX","url":"https://github.com/dinhviethoa/libetpan/commit/1fe8fbc032ccda1db9af66d93016b49c16c1f22d"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/dinhvh/libetpan","events":[{"introduced":"0"},{"fixed":"1fe8fbc032ccda1db9af66d93016b49c16c1f22d"},{"fixed":"fcbe81e025c01fab1fb807a4aebf7291b3e65253"}]},{"type":"GIT","repo":"https://github.com/dinhviethoa/libetpan","events":[{"introduced":"0"},{"last_affected":"86eb55f11e33c0757bf3950cf2dbab0d28de0059"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"1.7.2"}]}}],"versions":["1.2","1.2.pre1","1.3.pre1","1.3.pre2","1.4","1.4.1","1.5","1.6","1.7","1.7.2"],"database_specific":{"vanir_signatures_modified":"2026-04-11T04:59:32Z","source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-8825.json","vanir_signatures":[{"target":{"file":"src/low-level/imf/mailimf.c"},"signature_version":"v1","source":"https://github.com/dinhvh/libetpan/commit/1fe8fbc032ccda1db9af66d93016b49c16c1f22d","id":"CVE-2017-8825-43d77132","digest":{"line_hashes":["67007479827530995988954969792065200344","237296506629283453617497657190448271518","242672852381181053063557447058015321230","71112445817109240215460298007740484124","199721375279478880216943451353382181441","1384152481488305381244308223868773348","223283509090985959545044880308628582645","212688512232270646539260903353698900295"],"threshold":0.9},"signature_type":"Line","deprecated":false},{"deprecated":false,"signature_version":"v1","target":{"function":"mailimf_group_parse","file":"src/low-level/imf/mailimf.c"},"id":"CVE-2017-8825-46a8c00b","digest":{"length":1166,"function_hash":"126102935708842475007779073441540878489"},"signature_type":"Function","source":"https://github.com/dinhvh/libetpan/commit/1fe8fbc032ccda1db9af66d93016b49c16c1f22d"}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}