SUSE-SU-2015:2215-1 -- SLES libmspack0ID: oval:org.secpod.oval:def:89045468 | Date: (C)2021-08-04 (M)2021-06-02 |
Class: PATCH | Family: unix |
libmspack was updated to fix several security vulnerabilities. - Fix null pointer dereference on a crafted CAB. - Fix denial of service while processing crafted CHM file. - Fix denial of service while processing crafted CHM file. - Fix pointer arithmetic overflow during CHM decompression. - Fix off-by-one buffer over-read in mspack/mszipd.c. - Fix off-by-one buffer under-read in mspack/lzxd.c
Platform: |
SUSE Linux Enterprise Server 11 SP4 |