{"id":"MGASA-2017-0080","summary":"Updated icoutils packages fix security vulnerability","details":"Multiple vulnerabilities were discovered in the icotool (CVE-2017-6010,\nCVE-2017-6011) and wrestool (CVE-2017-6009) tools of icoutils, a set of\nprograms that deal with MS Windows icons and cursors, which may result in\ndenial of service or the execution of arbitrary code if a malformed .ico\nor .exe file is processed.\n","modified":"2026-04-16T06:24:18.753219924Z","published":"2017-03-23T07:19:23Z","upstream":["CVE-2017-6009","CVE-2017-6010","CVE-2017-6011"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2017-0080.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=20477"},{"type":"WEB","url":"https://www.debian.org/security/2017/dsa-3807"},{"type":"WEB","url":"http://git.savannah.gnu.org/cgit/icoutils.git/tree/NEWS?h=0.31.3"}],"affected":[{"package":{"name":"icoutils","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/icoutils?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.31.3-1.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2017-0080.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}