VulnerableCode Package Details - pkg:deb/debian/libmspack@0.10.1-1

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-27hu-pnjq-mya6	An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitialized data dereference and application crash).	CVE-2018-14679
VCID-7wzz-2yyd-zyg7	In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8, the CAB block input buffer is one byte too small for the maximal Quantum block, leading to an out-of-bounds write.	CVE-2018-18584
VCID-826a-aj9h-kkae	An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. Bad KWAJ file header extensions could cause a one or two byte overwrite.	CVE-2018-14681
VCID-c1gf-57fd-fqhj		CVE-2017-11423
VCID-cc7w-6sz9-ryfp	An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. It does not reject blank CHM filenames.	CVE-2018-14680
VCID-fbx1-cx81-cfcp	libmspack 0.9.1alpha is affected by: Buffer Overflow. The impact is: Information Disclosure. The component is: function chmd_read_headers() in libmspack(file libmspack/mspack/chmd.c). The attack vector is: the victim must open a specially crafted chm file. The fixed version is: after commit 2f084136cfe0d05e5bf5703f3e83c6d955234b4d.	CVE-2019-1010305
VCID-ssz6-tx89-s7gn	chmextract.c in the chmextract sample program, as distributed with libmspack before 0.8alpha, does not protect against absolute/relative pathnames in CHM files, leading to Directory Traversal. NOTE: the vendor disputes that this is a libmspack vulnerability, because chmextract.c was only intended as a source-code example, not a supported application	CVE-2018-18586
VCID-tkmc-1qrc-zuak		CVE-2017-6419
VCID-tvf7-cvb1-fbeb	chmd_read_headers in mspack/chmd.c in libmspack before 0.8alpha accepts a filename that has '\0' as its first or second character (such as the "/\0" name).	CVE-2018-18585
VCID-uevr-pax6-3qhg	An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER() macro for CHM decompression.	CVE-2018-14682

Vulnerability

Summary

Aliases

VCID-27hu-pnjq-mya6

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitialized data dereference and application crash).

CVE-2018-14679

VCID-7wzz-2yyd-zyg7

In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8, the CAB block input buffer is one byte too small for the maximal Quantum block, leading to an out-of-bounds write.

CVE-2018-18584

VCID-826a-aj9h-kkae

An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. Bad KWAJ file header extensions could cause a one or two byte overwrite.

CVE-2018-14681

VCID-c1gf-57fd-fqhj

CVE-2017-11423

VCID-cc7w-6sz9-ryfp

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. It does not reject blank CHM filenames.

CVE-2018-14680

VCID-fbx1-cx81-cfcp

libmspack 0.9.1alpha is affected by: Buffer Overflow. The impact is: Information Disclosure. The component is: function chmd_read_headers() in libmspack(file libmspack/mspack/chmd.c). The attack vector is: the victim must open a specially crafted chm file. The fixed version is: after commit 2f084136cfe0d05e5bf5703f3e83c6d955234b4d.

CVE-2019-1010305

VCID-ssz6-tx89-s7gn

chmextract.c in the chmextract sample program, as distributed with libmspack before 0.8alpha, does not protect against absolute/relative pathnames in CHM files, leading to Directory Traversal. NOTE: the vendor disputes that this is a libmspack vulnerability, because chmextract.c was only intended as a source-code example, not a supported application

CVE-2018-18586

VCID-tkmc-1qrc-zuak

CVE-2017-6419

VCID-tvf7-cvb1-fbeb

chmd_read_headers in mspack/chmd.c in libmspack before 0.8alpha accepts a filename that has '\0' as its first or second character (such as the "/\0" name).

CVE-2018-18585

VCID-uevr-pax6-3qhg

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER() macro for CHM decompression.

CVE-2018-14682

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-08-01T17:49:39.568782+00:00	Debian Oval Importer	Fixing	VCID-826a-aj9h-kkae	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T17:38:35.930142+00:00	Debian Oval Importer	Fixing	VCID-27hu-pnjq-mya6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T17:15:48.524738+00:00	Debian Oval Importer	Fixing	VCID-fbx1-cx81-cfcp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T16:20:18.183789+00:00	Debian Oval Importer	Fixing	VCID-ssz6-tx89-s7gn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T16:17:14.432337+00:00	Debian Oval Importer	Fixing	VCID-cc7w-6sz9-ryfp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T16:05:15.107018+00:00	Debian Oval Importer	Fixing	VCID-7wzz-2yyd-zyg7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T15:34:57.056828+00:00	Debian Oval Importer	Fixing	VCID-c1gf-57fd-fqhj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T15:29:53.157924+00:00	Debian Oval Importer	Fixing	VCID-tvf7-cvb1-fbeb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T14:53:46.222125+00:00	Debian Oval Importer	Fixing	VCID-uevr-pax6-3qhg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T12:58:29.767688+00:00	Debian Oval Importer	Fixing	VCID-tkmc-1qrc-zuak	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0