CVE-2017-8305

NameCVE-2017-8305
DescriptionThe UDFclient (before 0.8.8) custom strlcpy implementation has a buffer overflow. UDFclient's strlcpy is used only on systems with a C library (e.g., glibc) that lacks its own strlcpy.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs861347

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
udfclient (PTS)buster0.8.9-1fixed
sid, trixie, bookworm, bullseye0.8.11-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
udfclientsource(unstable)0.8.8-1861347

Search for package or bug name: Reporting problems