Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

11 – 18 of 18 results


CVE-2015-4472

Medium priority
Vulnerable

Off-by-one error in the READ_ENCINT macro in chmd.c in libmspack before 0.5 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted CHM file.

1 affected packages

libmspack

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libmspack Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2015-4471

Medium priority

Some fixes available 2 of 3

Off-by-one error in the lzxd_decompress function in lzxd.c in libmspack before 0.5 allows remote attackers to cause a denial of service (buffer under-read and application crash) via a crafted CAB archive.

2 affected packages

cabextract, libmspack

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cabextract Not affected Not affected Not affected Not affected
libmspack Not affected Not affected Not affected Not affected
Show less packages

CVE-2015-4470

Medium priority

Some fixes available 2 of 3

Off-by-one error in the inflate function in mszipd.c in libmspack before 0.5 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted CAB archive.

2 affected packages

cabextract, libmspack

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cabextract Not affected Not affected Not affected Not affected
libmspack Not affected Not affected Not affected Not affected
Show less packages

CVE-2015-4469

Medium priority
Vulnerable

The chmd_read_headers function in chmd.c in libmspack before 0.5 does not validate name lengths, which allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted CHM file.

1 affected packages

libmspack

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libmspack Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2015-4468

Medium priority
Vulnerable

Multiple integer overflows in the search_chunk function in chmd.c in libmspack before 0.5 allow remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted CHM file.

1 affected packages

libmspack

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libmspack Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2015-4467

Medium priority
Vulnerable

The chmd_init_decomp function in chmd.c in libmspack before 0.5 does not properly validate the reset interval, which allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted CHM file.

1 affected packages

libmspack

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libmspack Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2014-9732

Medium priority

Some fixes available 2 of 3

The cabd_extract function in cabd.c in libmspack before 0.5 does not properly maintain decompression callbacks in certain cases where an invalid file follows a valid file, which allows remote attackers to cause a denial of service...

2 affected packages

cabextract, libmspack

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cabextract Not affected Not affected Not affected Not affected
libmspack Not affected Not affected Not affected Not affected
Show less packages

CVE-2014-9556

Medium priority

Some fixes available 2 of 11

Integer overflow in the qtmd_decompress function in libmspack 0.4 allows remote attackers to cause a denial of service (hang) via a crafted CAB file, which triggers an infinite loop.

2 affected packages

cabextract, libmspack

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cabextract Not affected Not affected Not affected Not affected
libmspack Not affected Not affected Not affected Not affected
Show less packages