Search for packages
| purl | pkg:deb/debian/libmspack@0.5-1%2Bdeb9u3 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-27hu-pnjq-mya6
Aliases: CVE-2018-14679 |
An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitialized data dereference and application crash). |
Affected by 0 other vulnerabilities. |
|
VCID-7wzz-2yyd-zyg7
Aliases: CVE-2018-18584 |
In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8, the CAB block input buffer is one byte too small for the maximal Quantum block, leading to an out-of-bounds write. |
Affected by 0 other vulnerabilities. |
|
VCID-826a-aj9h-kkae
Aliases: CVE-2018-14681 |
An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. Bad KWAJ file header extensions could cause a one or two byte overwrite. |
Affected by 0 other vulnerabilities. |
|
VCID-c1gf-57fd-fqhj
Aliases: CVE-2017-11423 |
Affected by 0 other vulnerabilities. |
|
|
VCID-cc7w-6sz9-ryfp
Aliases: CVE-2018-14680 |
An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. It does not reject blank CHM filenames. |
Affected by 0 other vulnerabilities. |
|
VCID-fbx1-cx81-cfcp
Aliases: CVE-2019-1010305 |
libmspack 0.9.1alpha is affected by: Buffer Overflow. The impact is: Information Disclosure. The component is: function chmd_read_headers() in libmspack(file libmspack/mspack/chmd.c). The attack vector is: the victim must open a specially crafted chm file. The fixed version is: after commit 2f084136cfe0d05e5bf5703f3e83c6d955234b4d. |
Affected by 0 other vulnerabilities. |
|
VCID-ssz6-tx89-s7gn
Aliases: CVE-2018-18586 |
chmextract.c in the chmextract sample program, as distributed with libmspack before 0.8alpha, does not protect against absolute/relative pathnames in CHM files, leading to Directory Traversal. NOTE: the vendor disputes that this is a libmspack vulnerability, because chmextract.c was only intended as a source-code example, not a supported application |
Affected by 0 other vulnerabilities. |
|
VCID-tkmc-1qrc-zuak
Aliases: CVE-2017-6419 |
Affected by 0 other vulnerabilities. |
|
|
VCID-tvf7-cvb1-fbeb
Aliases: CVE-2018-18585 |
chmd_read_headers in mspack/chmd.c in libmspack before 0.8alpha accepts a filename that has '\0' as its first or second character (such as the "/\0" name). |
Affected by 0 other vulnerabilities. |
|
VCID-uevr-pax6-3qhg
Aliases: CVE-2018-14682 |
An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER() macro for CHM decompression. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-27hu-pnjq-mya6 | An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitialized data dereference and application crash). |
CVE-2018-14679
|
| VCID-826a-aj9h-kkae | An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. Bad KWAJ file header extensions could cause a one or two byte overwrite. |
CVE-2018-14681
|
| VCID-c1gf-57fd-fqhj |
CVE-2017-11423
|
|
| VCID-cc7w-6sz9-ryfp | An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. It does not reject blank CHM filenames. |
CVE-2018-14680
|
| VCID-tkmc-1qrc-zuak |
CVE-2017-6419
|
|
| VCID-uevr-pax6-3qhg | An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER() macro for CHM decompression. |
CVE-2018-14682
|