Download
| Alert*
oval:org.secpod.oval:def:57810
libmspack: library for Microsoft compression formats libmspack could be made to expose sensitive information if it received a specially crafted CHM file. oval:org.secpod.oval:def:66785 The libmspack packages contain a library providing compression and extraction of the Cabinet file format used by Microsoft. Security Fix: * libmspack: buffer overflow in function chmd_read_headers For more details about the security issue, including the impact, a CVSS score, acknowledgments, and o ... oval:org.secpod.oval:def:89050325 This update for libmspack fixes the following issues: Security issue fixed: - CVE-2019-1010305: Fixed a buffer overflow triggered by a crafted chm file which could have led to information disclosure . Other issue addressed: - Enable build-time tests oval:org.secpod.oval:def:116878 The purpose of libmspack is to provide both compression and decompression of some loosely related file formats used by Microsoft. oval:org.secpod.oval:def:116872 The purpose of libmspack is to provide both compression and decompression of some loosely related file formats used by Microsoft. oval:org.secpod.oval:def:89000397 This update for libmspack fixes the following issues: Security issues fixed: - CVE-2019-1010305: Fixed a buffer overflow triggered by a crafted chm file which could have led to information disclosure . - CVE-2018-18584: The CAB block input buffer was one byte too small for the maximal Quantum block, ... oval:org.secpod.oval:def:705079 libmspack: library for Microsoft compression formats libmspack could be made to expose sensitive information if it received a specially crafted CHM file. oval:org.secpod.oval:def:1700408 libmspack 0.9.1alpha is affected by: Buffer Overflow. The impact is: Information Disclosure. The component is: function chmd_read_headers in libmspack. The attack vector is: the victim must open a specially crafted chm file. The fixed version is: after commit 2f084136cfe0d05e5bf5703f3e83c6d955234b4d oval:org.secpod.oval:def:1504346 [0.5-0.8.alpha] - Fix for CVE-2019-1010305 resolves: rhbz#1736744 oval:org.secpod.oval:def:2005259 libmspack 0.9.1alpha is affected by: Buffer Overflow. The impact is: Information Disclosure. The component is: function chmd_read_headers in libmspack. The attack vector is: the victim must open a specially crafted chm file. The fixed version is: after commit 2f084136cfe0d05e5bf5703f3e83c6d955234b4d ... oval:org.secpod.oval:def:504302 The libmspack packages contain a library providing compression and extraction of the Cabinet file format used by Microsoft. Security Fix: * libmspack: buffer overflow in function chmd_read_headers For more details about the security issue, including the impact, a CVSS score, acknowledgments, and o ... oval:org.secpod.oval:def:205636 The libmspack packages contain a library providing compression and extraction of the Cabinet file format used by Microsoft. Security Fix: * libmspack: buffer overflow in function chmd_read_headers For more details about the security issue, including the impact, a CVSS score, acknowledgments, and o ... oval:org.secpod.oval:def:1504151 [0.7-0.2.alpha.4] - Fix for CVE-2019-1010305 - Remove "fix" for CVE-2018-14680 as this fix is included in base tar ball. resolves: rhbz#1736745, rhbz#1736743 [0.7-0.2.alpha.3] - Add gating tests resolves: rhbz#1682770 oval:org.secpod.oval:def:2500068 The libmspack packages contain a library providing compression and extraction of the Cabinet file format used by Microsoft. oval:org.secpod.oval:def:69500 The libmspack packages contain a library providing compression and extraction of the Cabinet file format used by Microsoft. Security Fix: * libmspack: buffer overflow in function chmd_read_headers For more details about the security issue, including the impact, a CVSS score, acknowledgments, and o ... |