UnRTF allows remote malicious users to cause a denial of service (out-of-bounds memory access and crash) and possibly execute arbitrary code via a crafted RTF file.
Debian Bug report logs -
#772811
unrtf: CVE-2014-9274 CVE-2014-9275
Package:
unrtf;
Maintainer for unrtf is Willi Mann <willi@debianorg>; Source for unrtf is src:unrtf (PTS, buildd, popcon)
Reported by: Moritz Muehlenhoff <jmm@inutilorg>
Date: Thu, 11 Dec 2014 11:21:01 UTC
Severity: grave
Tags: fixed-upstream, pat ...