Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/libmspack@0.11-1.1?distro=trixie
purl pkg:deb/debian/libmspack@0.11-1.1?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (18)
Vulnerability Summary Aliases
VCID-1vgy-c562-9bbf Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-18585
VCID-35vw-agja-w7du Integer overflow in the qtmd_decompress function in libmspack 0.4 allows remote attackers to cause a denial of service (hang) via a crafted CAB file, which triggers an infinite loop. CVE-2014-9556
VCID-5ke3-8apw-bqf4 Multiple integer overflows in the search_chunk function in chmd.c in libmspack before 0.5 allow remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted CHM file. CVE-2015-4468
VCID-6mc3-fgw8-5qby Multiple vulnerabilities have been found in Adobe Flash Player, the worst of which allows remote attackers to execute arbitrary code. CVE-2015-4472
VCID-76q9-uw9b-a7fa The cabd_extract function in cabd.c in libmspack before 0.5 does not properly maintain decompression callbacks in certain cases where an invalid file follows a valid file, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted CAB archive. CVE-2014-9732
VCID-a24v-smtd-5bak The chmd_read_headers function in chmd.c in libmspack before 0.5 does not validate name lengths, which allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted CHM file. CVE-2015-4469
VCID-aa1x-d19y-sqgg Off-by-one error in the inflate function in mszipd.c in libmspack before 0.5 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted CAB archive. CVE-2015-4470
VCID-c41b-s8eq-hffa Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-14679
VCID-c7nv-pcz1-8fcg Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-14680
VCID-gc7q-6qf2-73dw Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-18584
VCID-geh5-ajgf-33gu libmspack: buffer overflow in function chmd_read_headers() CVE-2019-1010305
VCID-guz8-mfzu-uuc9 Multiple vulnerabilities have been found in ClamAV, the worst of which may allow remote attackers to execute arbitrary code. CVE-2017-6419
VCID-jah5-34m5-eygb The chmd_init_decomp function in chmd.c in libmspack before 0.5 does not properly validate the reset interval, which allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted CHM file. CVE-2015-4467
VCID-km35-kh9p-xffn Off-by-one error in the lzxd_decompress function in lzxd.c in libmspack before 0.5 allows remote attackers to cause a denial of service (buffer under-read and application crash) via a crafted CAB archive. CVE-2015-4471
VCID-p2j3-wwfx-5ub5 Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-18586
VCID-qjzp-uh5m-gqe4 Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-14682
VCID-t6hw-prdn-fue4 Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. CVE-2018-14681
VCID-y5mg-rpf8-cbe7 Multiple vulnerabilities have been found in ClamAV, the worst of which may allow remote attackers to execute arbitrary code. CVE-2017-11423

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T13:24:32.014318+00:00 Debian Importer Fixing VCID-y5mg-rpf8-cbe7 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T13:09:55.828365+00:00 Debian Importer Fixing VCID-gc7q-6qf2-73dw https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:46:30.657081+00:00 Debian Importer Fixing VCID-c41b-s8eq-hffa https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:36:15.015877+00:00 Debian Importer Fixing VCID-guz8-mfzu-uuc9 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:25:16.688619+00:00 Debian Importer Fixing VCID-a24v-smtd-5bak https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:23:26.699428+00:00 Debian Importer Fixing VCID-t6hw-prdn-fue4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:11:24.467948+00:00 Debian Importer Fixing VCID-qjzp-uh5m-gqe4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:05:10.397197+00:00 Debian Importer Fixing VCID-jah5-34m5-eygb https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:03:53.575559+00:00 Debian Importer Fixing VCID-geh5-ajgf-33gu https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:55:58.400744+00:00 Debian Importer Fixing VCID-35vw-agja-w7du https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:52:52.778384+00:00 Debian Importer Fixing VCID-5ke3-8apw-bqf4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:50:59.771035+00:00 Debian Importer Fixing VCID-1vgy-c562-9bbf https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:32:49.840554+00:00 Debian Importer Fixing VCID-76q9-uw9b-a7fa https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:28:10.748746+00:00 Debian Importer Fixing VCID-c7nv-pcz1-8fcg https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:21:05.017929+00:00 Debian Importer Fixing VCID-6mc3-fgw8-5qby https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:20:19.629291+00:00 Debian Importer Fixing VCID-aa1x-d19y-sqgg https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:42:26.013715+00:00 Debian Importer Fixing VCID-km35-kh9p-xffn https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:50:24.722422+00:00 Debian Importer Fixing VCID-p2j3-wwfx-5ub5 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:14:54.648787+00:00 Debian Importer Fixing VCID-y5mg-rpf8-cbe7 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T09:03:26.691337+00:00 Debian Importer Fixing VCID-gc7q-6qf2-73dw https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:45:42.912005+00:00 Debian Importer Fixing VCID-c41b-s8eq-hffa https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:38:02.789894+00:00 Debian Importer Fixing VCID-guz8-mfzu-uuc9 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:30:08.862592+00:00 Debian Importer Fixing VCID-a24v-smtd-5bak https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:28:42.644290+00:00 Debian Importer Fixing VCID-t6hw-prdn-fue4 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:20:15.199896+00:00 Debian Importer Fixing VCID-qjzp-uh5m-gqe4 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:15:35.181729+00:00 Debian Importer Fixing VCID-jah5-34m5-eygb https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:14:38.726591+00:00 Debian Importer Fixing VCID-geh5-ajgf-33gu https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:08:40.850042+00:00 Debian Importer Fixing VCID-35vw-agja-w7du https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:06:41.991553+00:00 Debian Importer Fixing VCID-5ke3-8apw-bqf4 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:05:18.413910+00:00 Debian Importer Fixing VCID-1vgy-c562-9bbf https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:52:15.941649+00:00 Debian Importer Fixing VCID-76q9-uw9b-a7fa https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:48:56.739496+00:00 Debian Importer Fixing VCID-c7nv-pcz1-8fcg https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:43:39.756621+00:00 Debian Importer Fixing VCID-6mc3-fgw8-5qby https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:43:02.603195+00:00 Debian Importer Fixing VCID-aa1x-d19y-sqgg https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:14:31.125153+00:00 Debian Importer Fixing VCID-km35-kh9p-xffn https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:56:19.988654+00:00 Debian Importer Fixing VCID-p2j3-wwfx-5ub5 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:29:05.923591+00:00 Debian Importer Fixing VCID-geh5-ajgf-33gu https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.888267+00:00 Debian Importer Fixing VCID-p2j3-wwfx-5ub5 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.847436+00:00 Debian Importer Fixing VCID-1vgy-c562-9bbf https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.806759+00:00 Debian Importer Fixing VCID-gc7q-6qf2-73dw https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.764928+00:00 Debian Importer Fixing VCID-qjzp-uh5m-gqe4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.724319+00:00 Debian Importer Fixing VCID-t6hw-prdn-fue4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.683404+00:00 Debian Importer Fixing VCID-c7nv-pcz1-8fcg https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.642547+00:00 Debian Importer Fixing VCID-c41b-s8eq-hffa https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.600470+00:00 Debian Importer Fixing VCID-guz8-mfzu-uuc9 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.554995+00:00 Debian Importer Fixing VCID-y5mg-rpf8-cbe7 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.513189+00:00 Debian Importer Fixing VCID-6mc3-fgw8-5qby https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.472463+00:00 Debian Importer Fixing VCID-km35-kh9p-xffn https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.431679+00:00 Debian Importer Fixing VCID-aa1x-d19y-sqgg https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.390301+00:00 Debian Importer Fixing VCID-a24v-smtd-5bak https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.350091+00:00 Debian Importer Fixing VCID-5ke3-8apw-bqf4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.308682+00:00 Debian Importer Fixing VCID-jah5-34m5-eygb https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.267058+00:00 Debian Importer Fixing VCID-76q9-uw9b-a7fa https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:05.225735+00:00 Debian Importer Fixing VCID-35vw-agja-w7du https://security-tracker.debian.org/tracker/data/json 38.1.0