Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/libmspack@0.10.1-2?distro=trixie
purl pkg:deb/debian/libmspack@0.10.1-2?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (18)
Vulnerability Summary Aliases
VCID-1vgy-c562-9bbf Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-18585
VCID-35vw-agja-w7du Integer overflow in the qtmd_decompress function in libmspack 0.4 allows remote attackers to cause a denial of service (hang) via a crafted CAB file, which triggers an infinite loop. CVE-2014-9556
VCID-5ke3-8apw-bqf4 Multiple integer overflows in the search_chunk function in chmd.c in libmspack before 0.5 allow remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted CHM file. CVE-2015-4468
VCID-6mc3-fgw8-5qby Multiple vulnerabilities have been found in Adobe Flash Player, the worst of which allows remote attackers to execute arbitrary code. CVE-2015-4472
VCID-76q9-uw9b-a7fa The cabd_extract function in cabd.c in libmspack before 0.5 does not properly maintain decompression callbacks in certain cases where an invalid file follows a valid file, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted CAB archive. CVE-2014-9732
VCID-a24v-smtd-5bak The chmd_read_headers function in chmd.c in libmspack before 0.5 does not validate name lengths, which allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted CHM file. CVE-2015-4469
VCID-aa1x-d19y-sqgg Off-by-one error in the inflate function in mszipd.c in libmspack before 0.5 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted CAB archive. CVE-2015-4470
VCID-c41b-s8eq-hffa Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-14679
VCID-c7nv-pcz1-8fcg Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-14680
VCID-gc7q-6qf2-73dw Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-18584
VCID-geh5-ajgf-33gu libmspack: buffer overflow in function chmd_read_headers() CVE-2019-1010305
VCID-guz8-mfzu-uuc9 Multiple vulnerabilities have been found in ClamAV, the worst of which may allow remote attackers to execute arbitrary code. CVE-2017-6419
VCID-jah5-34m5-eygb The chmd_init_decomp function in chmd.c in libmspack before 0.5 does not properly validate the reset interval, which allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted CHM file. CVE-2015-4467
VCID-km35-kh9p-xffn Off-by-one error in the lzxd_decompress function in lzxd.c in libmspack before 0.5 allows remote attackers to cause a denial of service (buffer under-read and application crash) via a crafted CAB archive. CVE-2015-4471
VCID-p2j3-wwfx-5ub5 Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-18586
VCID-qjzp-uh5m-gqe4 Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-14682
VCID-t6hw-prdn-fue4 Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-14681
VCID-y5mg-rpf8-cbe7 Multiple vulnerabilities have been found in ClamAV, the worst of which may allow remote attackers to execute arbitrary code. CVE-2017-11423

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T13:24:32.000868+00:00 Debian Importer Fixing VCID-y5mg-rpf8-cbe7 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T13:09:55.815584+00:00 Debian Importer Fixing VCID-gc7q-6qf2-73dw https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:46:30.644588+00:00 Debian Importer Fixing VCID-c41b-s8eq-hffa https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:36:15.003258+00:00 Debian Importer Fixing VCID-guz8-mfzu-uuc9 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:25:16.673628+00:00 Debian Importer Fixing VCID-a24v-smtd-5bak https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:23:26.687209+00:00 Debian Importer Fixing VCID-t6hw-prdn-fue4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:11:24.454594+00:00 Debian Importer Fixing VCID-qjzp-uh5m-gqe4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:05:10.391528+00:00 Debian Importer Fixing VCID-jah5-34m5-eygb https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:03:53.565017+00:00 Debian Importer Fixing VCID-geh5-ajgf-33gu https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:55:58.388032+00:00 Debian Importer Fixing VCID-35vw-agja-w7du https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:52:52.766599+00:00 Debian Importer Fixing VCID-5ke3-8apw-bqf4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:50:59.758577+00:00 Debian Importer Fixing VCID-1vgy-c562-9bbf https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:32:49.827448+00:00 Debian Importer Fixing VCID-76q9-uw9b-a7fa https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:28:10.734902+00:00 Debian Importer Fixing VCID-c7nv-pcz1-8fcg https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:21:05.005579+00:00 Debian Importer Fixing VCID-6mc3-fgw8-5qby https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:20:19.616948+00:00 Debian Importer Fixing VCID-aa1x-d19y-sqgg https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:42:26.000248+00:00 Debian Importer Fixing VCID-km35-kh9p-xffn https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:50:24.709424+00:00 Debian Importer Fixing VCID-p2j3-wwfx-5ub5 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:14:54.634866+00:00 Debian Importer Fixing VCID-y5mg-rpf8-cbe7 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T09:03:26.677345+00:00 Debian Importer Fixing VCID-gc7q-6qf2-73dw https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:45:42.899497+00:00 Debian Importer Fixing VCID-c41b-s8eq-hffa https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:38:02.775960+00:00 Debian Importer Fixing VCID-guz8-mfzu-uuc9 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:30:08.849308+00:00 Debian Importer Fixing VCID-a24v-smtd-5bak https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:28:42.630815+00:00 Debian Importer Fixing VCID-t6hw-prdn-fue4 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:20:15.186988+00:00 Debian Importer Fixing VCID-qjzp-uh5m-gqe4 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:15:35.167368+00:00 Debian Importer Fixing VCID-jah5-34m5-eygb https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:14:38.716179+00:00 Debian Importer Fixing VCID-geh5-ajgf-33gu https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:08:40.835910+00:00 Debian Importer Fixing VCID-35vw-agja-w7du https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:06:41.982295+00:00 Debian Importer Fixing VCID-5ke3-8apw-bqf4 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:05:18.400006+00:00 Debian Importer Fixing VCID-1vgy-c562-9bbf https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:52:15.929471+00:00 Debian Importer Fixing VCID-76q9-uw9b-a7fa https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:48:56.725427+00:00 Debian Importer Fixing VCID-c7nv-pcz1-8fcg https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:43:39.736355+00:00 Debian Importer Fixing VCID-6mc3-fgw8-5qby https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:43:02.589897+00:00 Debian Importer Fixing VCID-aa1x-d19y-sqgg https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:14:31.115502+00:00 Debian Importer Fixing VCID-km35-kh9p-xffn https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:56:19.974185+00:00 Debian Importer Fixing VCID-p2j3-wwfx-5ub5 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:29:05.916830+00:00 Debian Importer Fixing VCID-geh5-ajgf-33gu https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.880251+00:00 Debian Importer Fixing VCID-p2j3-wwfx-5ub5 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.839415+00:00 Debian Importer Fixing VCID-1vgy-c562-9bbf https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.798673+00:00 Debian Importer Fixing VCID-gc7q-6qf2-73dw https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.756977+00:00 Debian Importer Fixing VCID-qjzp-uh5m-gqe4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.716369+00:00 Debian Importer Fixing VCID-t6hw-prdn-fue4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.675431+00:00 Debian Importer Fixing VCID-c7nv-pcz1-8fcg https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.634294+00:00 Debian Importer Fixing VCID-c41b-s8eq-hffa https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.592465+00:00 Debian Importer Fixing VCID-guz8-mfzu-uuc9 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.546656+00:00 Debian Importer Fixing VCID-y5mg-rpf8-cbe7 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.505387+00:00 Debian Importer Fixing VCID-6mc3-fgw8-5qby https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.464435+00:00 Debian Importer Fixing VCID-km35-kh9p-xffn https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.423484+00:00 Debian Importer Fixing VCID-aa1x-d19y-sqgg https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.382201+00:00 Debian Importer Fixing VCID-a24v-smtd-5bak https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.342024+00:00 Debian Importer Fixing VCID-5ke3-8apw-bqf4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.300749+00:00 Debian Importer Fixing VCID-jah5-34m5-eygb https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.259103+00:00 Debian Importer Fixing VCID-76q9-uw9b-a7fa https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.216259+00:00 Debian Importer Fixing VCID-35vw-agja-w7du https://security-tracker.debian.org/tracker/data/json 38.1.0