Launchpad.net

CVE 2017-6306

An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "9 of 9. Directory Traversal using the filename; SanitizeFilename function in settings.c."

See the CVE page on Mitre.org for more details.