Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/libmspack@0.11-1?distro=trixie
purl pkg:deb/debian/libmspack@0.11-1?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (18)
Vulnerability Summary Aliases
VCID-1vgy-c562-9bbf Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-18585
VCID-35vw-agja-w7du Integer overflow in the qtmd_decompress function in libmspack 0.4 allows remote attackers to cause a denial of service (hang) via a crafted CAB file, which triggers an infinite loop. CVE-2014-9556
VCID-5ke3-8apw-bqf4 Multiple integer overflows in the search_chunk function in chmd.c in libmspack before 0.5 allow remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted CHM file. CVE-2015-4468
VCID-6mc3-fgw8-5qby Multiple vulnerabilities have been found in Adobe Flash Player, the worst of which allows remote attackers to execute arbitrary code. CVE-2015-4472
VCID-76q9-uw9b-a7fa The cabd_extract function in cabd.c in libmspack before 0.5 does not properly maintain decompression callbacks in certain cases where an invalid file follows a valid file, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted CAB archive. CVE-2014-9732
VCID-a24v-smtd-5bak The chmd_read_headers function in chmd.c in libmspack before 0.5 does not validate name lengths, which allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted CHM file. CVE-2015-4469
VCID-aa1x-d19y-sqgg Off-by-one error in the inflate function in mszipd.c in libmspack before 0.5 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted CAB archive. CVE-2015-4470
VCID-c41b-s8eq-hffa Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-14679
VCID-c7nv-pcz1-8fcg Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-14680
VCID-gc7q-6qf2-73dw Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-18584
VCID-geh5-ajgf-33gu libmspack: buffer overflow in function chmd_read_headers() CVE-2019-1010305
VCID-guz8-mfzu-uuc9 Multiple vulnerabilities have been found in ClamAV, the worst of which may allow remote attackers to execute arbitrary code. CVE-2017-6419
VCID-jah5-34m5-eygb The chmd_init_decomp function in chmd.c in libmspack before 0.5 does not properly validate the reset interval, which allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted CHM file. CVE-2015-4467
VCID-km35-kh9p-xffn Off-by-one error in the lzxd_decompress function in lzxd.c in libmspack before 0.5 allows remote attackers to cause a denial of service (buffer under-read and application crash) via a crafted CAB archive. CVE-2015-4471
VCID-p2j3-wwfx-5ub5 Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-18586
VCID-qjzp-uh5m-gqe4 Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-14682
VCID-t6hw-prdn-fue4 Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-14681
VCID-y5mg-rpf8-cbe7 Multiple vulnerabilities have been found in ClamAV, the worst of which may allow remote attackers to execute arbitrary code. CVE-2017-11423

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T13:24:32.007574+00:00 Debian Importer Fixing VCID-y5mg-rpf8-cbe7 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T13:09:55.822130+00:00 Debian Importer Fixing VCID-gc7q-6qf2-73dw https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:46:30.650842+00:00 Debian Importer Fixing VCID-c41b-s8eq-hffa https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:36:15.009661+00:00 Debian Importer Fixing VCID-guz8-mfzu-uuc9 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:25:16.681050+00:00 Debian Importer Fixing VCID-a24v-smtd-5bak https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:23:26.693326+00:00 Debian Importer Fixing VCID-t6hw-prdn-fue4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:11:24.461114+00:00 Debian Importer Fixing VCID-qjzp-uh5m-gqe4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:05:10.394496+00:00 Debian Importer Fixing VCID-jah5-34m5-eygb https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:03:53.570394+00:00 Debian Importer Fixing VCID-geh5-ajgf-33gu https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:55:58.394338+00:00 Debian Importer Fixing VCID-35vw-agja-w7du https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:52:52.772525+00:00 Debian Importer Fixing VCID-5ke3-8apw-bqf4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:50:59.764803+00:00 Debian Importer Fixing VCID-1vgy-c562-9bbf https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:32:49.833932+00:00 Debian Importer Fixing VCID-76q9-uw9b-a7fa https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:28:10.741786+00:00 Debian Importer Fixing VCID-c7nv-pcz1-8fcg https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:21:05.011756+00:00 Debian Importer Fixing VCID-6mc3-fgw8-5qby https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:20:19.623131+00:00 Debian Importer Fixing VCID-aa1x-d19y-sqgg https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:42:26.006570+00:00 Debian Importer Fixing VCID-km35-kh9p-xffn https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:50:24.715825+00:00 Debian Importer Fixing VCID-p2j3-wwfx-5ub5 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:14:54.641829+00:00 Debian Importer Fixing VCID-y5mg-rpf8-cbe7 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T09:03:26.684405+00:00 Debian Importer Fixing VCID-gc7q-6qf2-73dw https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:45:42.905797+00:00 Debian Importer Fixing VCID-c41b-s8eq-hffa https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:38:02.782922+00:00 Debian Importer Fixing VCID-guz8-mfzu-uuc9 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:30:08.856012+00:00 Debian Importer Fixing VCID-a24v-smtd-5bak https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:28:42.637514+00:00 Debian Importer Fixing VCID-t6hw-prdn-fue4 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:20:15.193452+00:00 Debian Importer Fixing VCID-qjzp-uh5m-gqe4 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:15:35.174557+00:00 Debian Importer Fixing VCID-jah5-34m5-eygb https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:14:38.721345+00:00 Debian Importer Fixing VCID-geh5-ajgf-33gu https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:08:40.843173+00:00 Debian Importer Fixing VCID-35vw-agja-w7du https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:06:41.986565+00:00 Debian Importer Fixing VCID-5ke3-8apw-bqf4 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:05:18.406998+00:00 Debian Importer Fixing VCID-1vgy-c562-9bbf https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:52:15.935603+00:00 Debian Importer Fixing VCID-76q9-uw9b-a7fa https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:48:56.732478+00:00 Debian Importer Fixing VCID-c7nv-pcz1-8fcg https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:43:39.746975+00:00 Debian Importer Fixing VCID-6mc3-fgw8-5qby https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:43:02.596485+00:00 Debian Importer Fixing VCID-aa1x-d19y-sqgg https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:14:31.120364+00:00 Debian Importer Fixing VCID-km35-kh9p-xffn https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:56:19.981512+00:00 Debian Importer Fixing VCID-p2j3-wwfx-5ub5 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:29:05.902118+00:00 Debian Importer Fixing VCID-geh5-ajgf-33gu https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.864151+00:00 Debian Importer Fixing VCID-p2j3-wwfx-5ub5 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.823356+00:00 Debian Importer Fixing VCID-1vgy-c562-9bbf https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.781532+00:00 Debian Importer Fixing VCID-gc7q-6qf2-73dw https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.741291+00:00 Debian Importer Fixing VCID-qjzp-uh5m-gqe4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.700277+00:00 Debian Importer Fixing VCID-t6hw-prdn-fue4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.659406+00:00 Debian Importer Fixing VCID-c7nv-pcz1-8fcg https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.617280+00:00 Debian Importer Fixing VCID-c41b-s8eq-hffa https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.576210+00:00 Debian Importer Fixing VCID-guz8-mfzu-uuc9 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.529298+00:00 Debian Importer Fixing VCID-y5mg-rpf8-cbe7 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.489206+00:00 Debian Importer Fixing VCID-6mc3-fgw8-5qby https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.448432+00:00 Debian Importer Fixing VCID-km35-kh9p-xffn https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.407117+00:00 Debian Importer Fixing VCID-aa1x-d19y-sqgg https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.365815+00:00 Debian Importer Fixing VCID-a24v-smtd-5bak https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.325624+00:00 Debian Importer Fixing VCID-5ke3-8apw-bqf4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.283628+00:00 Debian Importer Fixing VCID-jah5-34m5-eygb https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.242357+00:00 Debian Importer Fixing VCID-76q9-uw9b-a7fa https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.197776+00:00 Debian Importer Fixing VCID-35vw-agja-w7du https://security-tracker.debian.org/tracker/data/json 38.1.0