Showing 1 - 7 of 7

CVE-2018-14682

Status Candidate

Overview

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER() macro for CHM decompression.

Gentoo Linux Security Advisory 201903-20: Posted Mar 28, 2019; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201903-20 - Multiple vulnerabilities have been found in cabextract and libmspack, the worst of which could result in a Denial of Service. Versions less than 1.8 are affected.; tags | advisory, denial of service, vulnerability; systems | linux, gentoo; advisories | CVE-2018-14679, CVE-2018-14680, CVE-2018-14681, CVE-2018-14682, CVE-2018-18584, CVE-2018-18585, CVE-2018-18586; SHA-256 | f6cc6c4509246d480adeaa1577b14cf69fbde2f3438f43221621f90493f9137a; Download | Favorite | View

Red Hat Security Advisory 2018-3505-01: Posted Nov 6, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-3505-01 - Red Hat Ansible Tower 3.3.1 is now available and contains a large amount of security fixes.; tags | advisory; systems | linux, redhat; advisories | CVE-2015-9262, CVE-2016-9396, CVE-2017-1000050, CVE-2017-18267, CVE-2017-3735, CVE-2018-0495, CVE-2018-0732, CVE-2018-0737, CVE-2018-0739, CVE-2018-1000805, CVE-2018-1060, CVE-2018-1061, CVE-2018-10733, CVE-2018-10767, CVE-2018-10768, CVE-2018-10844, CVE-2018-10845, CVE-2018-10846, CVE-2018-12384, CVE-2018-12910, CVE-2018-13988, CVE-2018-14679, CVE-2018-14680, CVE-2018-14681, CVE-2018-14682, CVE-2018-16837, CVE-2018-17456; SHA-256 | 5a18fce8ca273b8a62b85b1a2bf4e5b4df4fb5583a3543625bcc53528045ab49; Download | Favorite | View

Red Hat Security Advisory 2018-3327-01: Posted Oct 31, 2018; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2018-3327-01 - The libmspack packages contain a library providing compression and extraction of the Cabinet file format used by Microsoft. Issues addressed include off-by-one vulnerabilities.; tags | advisory, vulnerability; systems | linux, redhat; advisories | CVE-2018-14679, CVE-2018-14680, CVE-2018-14681, CVE-2018-14682; SHA-256 | 90d313c8277c04ae0f76588e12885db0322fff5467cfda7d8e15f649b6798999; Download | Favorite | View

Debian Security Advisory 4260-1: Posted Aug 3, 2018; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4260-1 - Several vulnerabilities were discovered in libsmpack, a library used to handle Microsoft compression formats. A remote attacker could craft malicious CAB, CHM or KWAJ files and use these flaws to cause a denial of service via application crash, or potentially execute arbitrary code.; tags | advisory, remote, denial of service, arbitrary, vulnerability; systems | linux, debian; advisories | CVE-2018-14679, CVE-2018-14680, CVE-2018-14681, CVE-2018-14682; SHA-256 | fb45218ef1155d04ed9a264c53d103866cae9bc213e876ce2476c61662dceeeb; Download | Favorite | View

Ubuntu Security Notice USN-3728-3: Posted Aug 2, 2018; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3728-3 - USN-3728-2 fixed several vulnerabilities in ClamAV. This update provides the corresponding update for Ubuntu 12.04 ESM. Hanno Boeck discovered that libmspack incorrectly handled certain CHM files. An attacker could possibly use this issue to cause a denial of service. Various other issues were also addressed.; tags | advisory, denial of service, vulnerability; systems | linux, ubuntu; advisories | CVE-2018-14679, CVE-2018-14681, CVE-2018-14682; SHA-256 | 71d8c9d8fdaf567458cf32a3e140f962b401834aa67eb857a1155dbcc5bdb646; Download | Favorite | View

Ubuntu Security Notice USN-3728-2: Posted Aug 2, 2018; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3728-2 - USN-3728-1 fixed several vulnerabilities in libmspack. In Ubuntu 14.04 libmspack is included into ClamAV. This update provides the corresponding update for Ubuntu 14.04 LTS. Hanno Boeck discovered that libmspack incorrectly handled certain CHM files. An attacker could possibly use this issue to cause a denial of service. Various other issues were also addressed.; tags | advisory, denial of service, vulnerability; systems | linux, ubuntu; advisories | CVE-2018-14679, CVE-2018-14681, CVE-2018-14682; SHA-256 | 5625f0955126b8d3a11ac25270e4c9d4e261a0e58bc5d53f9d9cd9cf597ba8f1; Download | Favorite | View

Ubuntu Security Notice USN-3728-1: Posted Aug 1, 2018; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3728-1 - Hanno Boeck discovered that libmspack incorrectly handled certain CHM files. An attacker could possibly use this issue to cause a denial of service. Jakub Wilk discovered that libmspack incorrectly handled certain KWAJ files. An attacker could possibly use this issue to execute arbitrary code. Dmitry Glavatskikh discovered that libmspack incorrectly certain CHM files. An attacker could possibly use this issue to execute arbitrary code. Various other issues were also addressed.; tags | advisory, denial of service, arbitrary; systems | linux, ubuntu; advisories | CVE-2018-14679, CVE-2018-14681, CVE-2018-14682; SHA-256 | ca482bb886b51c441207fba939f93cf197fd87f3a41abe851e6d558659a693d6; Download | Favorite | View

Page 1 of 1 Back 1 Next