Search for packages
| purl | pkg:alpm/archlinux/libmspack@0.5alpha-1 |
| Next non-vulnerable version | 1:0.6alpha-1 |
| Latest non-vulnerable version | 1:0.6alpha-1 |
| Risk | 4.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-8pm8-hj6d-aaaq
Aliases: CVE-2017-11423 |
The cabd_read_string function in mspack/cabd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2 and other products, allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a crafted CAB file. |
Affected by 0 other vulnerabilities. |
|
VCID-q3fd-q3r3-aaas
Aliases: CVE-2017-6419 |
mspack/lzxd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2, allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted CHM file. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T07:44:36.847167+00:00 | Arch Linux Importer | Affected by | VCID-8pm8-hj6d-aaaq | https://security.archlinux.org/AVG-603 | 36.0.0 |
| 2025-03-28T07:44:36.824505+00:00 | Arch Linux Importer | Affected by | VCID-q3fd-q3r3-aaas | https://security.archlinux.org/AVG-603 | 36.0.0 |
| 2024-09-18T01:59:40.867939+00:00 | Arch Linux Importer | Affected by | VCID-8pm8-hj6d-aaaq | https://security.archlinux.org/AVG-603 | 34.0.1 |
| 2024-09-18T01:59:40.843882+00:00 | Arch Linux Importer | Affected by | VCID-q3fd-q3r3-aaas | https://security.archlinux.org/AVG-603 | 34.0.1 |
| 2024-01-03T22:25:56.650285+00:00 | Arch Linux Importer | Affected by | VCID-8pm8-hj6d-aaaq | https://security.archlinux.org/AVG-603 | 34.0.0rc1 |
| 2024-01-03T22:25:56.625670+00:00 | Arch Linux Importer | Affected by | VCID-q3fd-q3r3-aaas | https://security.archlinux.org/AVG-603 | 34.0.0rc1 |