{"id":"UBUNTU-CVE-2015-8708","details":"Stack-based buffer overflow in the conv_euctojis function in codeconv.c in Claws Mail 3.13.1 allows remote attackers to have unspecified impact via a crafted email, involving Japanese character set conversion.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8614.","modified":"2025-07-16T07:33:36.645584Z","published":"2016-04-11T21:59:00Z","withdrawn":"2025-07-18T16:43:19Z","upstream":["CVE-2015-8708"],"references":[{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2015-8708"},{"type":"REPORT","url":"https://www.cve.org/CVERecord?id=CVE-2015-8708"}],"affected":[{"package":{"name":"claws-mail","ecosystem":"Ubuntu:16.04:LTS","purl":"pkg:deb/ubuntu/claws-mail@3.13.2-1ubuntu1?arch=source&distro=xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.13.2-1ubuntu1"}]}],"versions":["3.12.0-1ubuntu1","3.12.0-1ubuntu2","3.13.1-1.1ubuntu1","3.13.1-1.1ubuntu2","3.13.1-1.1ubuntu3"],"ecosystem_specific":{"binaries":[{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-acpi-notifier"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-acpi-notifier-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-address-keeper"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-address-keeper-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-archiver-plugin"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-archiver-plugin-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-attach-remover"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-attach-remover-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-attach-warner"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-attach-warner-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-bogofilter"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-bogofilter-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-bsfilter-plugin"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-bsfilter-plugin-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-clamd-plugin"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-clamd-plugin-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-dbg"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-doc"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-extra-plugins"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-fancy-plugin"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-fancy-plugin-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-feeds-reader"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-feeds-reader-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-fetchinfo-plugin"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-fetchinfo-plugin-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-gdata-plugin"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-gdata-plugin-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-i18n"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-libravatar"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-libravatar-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-mailmbox-plugin"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-mailmbox-plugin-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-managesieve"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-managesieve-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-multi-notifier"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-multi-notifier-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-newmail-plugin"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-newmail-plugin-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-pdf-viewer"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-pdf-viewer-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-perl-filter"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-perl-filter-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-pgpinline"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-pgpinline-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-pgpmime"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-pgpmime-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-plugins"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-python-plugin"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-python-plugin-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-smime-plugin"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-smime-plugin-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-spam-report"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-spam-report-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-spamassassin"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-spamassassin-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-tnef-parser"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-tnef-parser-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-tools"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-vcalendar-plugin"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"claws-mail-vcalendar-plugin-dbgsym"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"libclaws-mail-dev"},{"binary_version":"3.13.2-1ubuntu1","binary_name":"libclaws-mail-dev-dbgsym"}],"availability":"No subscription required"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2015/UBUNTU-CVE-2015-8708.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"type":"Ubuntu","score":"medium"}]}