610 matches found
SUSE-SU-2015:0508-1 Security update for libmspack
This update fixes the following security issue: CVE-2014-9556: An integer overflow in the function qtmddecompress could have been exploited causing a denial of service endless loop bnc912214 Security Issues: CVE-2014-9556...
SUSE-SU-2015:0506-1 Security update for libmspack
libmspack was updated to fix one security issue. This security issue was fixed: - Possible DoS by infinite loop bnc912214, CVE-2014-9556 The previous fix was not fully fixing this problem...
[ MDVSA-2015:041 ] cabextract
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:041 http://www.mandriva.com/en/support/security/ Package : cabextract Date : February 10, 2015 Affected: Business Server 1.0 Problem Description: Updated cabextract packages fix security vulnerability:...
libmspack / cabextract DoS
Infinite loop on extraction...
Mandriva Linux Security Advisory : cabextract (MDVSA-2015:041)
Updated cabextract packages fix security vulnerability : Libmspack, a library to provide compression and decompression of some file formats used by Microsoft, is embedded in cabextract. A specially crafted cab file can cause cabextract to hang forever. If cabextract is exposed to any...
Libmspack 'mspack/chmd.c' Remote Denial of Service Vulnerability
Libmspack is a library that compresses and decompresses files in Microsoft's CAB, CHM and HLP formats. A remote denial of service vulnerability exists in Libmspack 'mspack/chmd.c', which can be exploited by an attacker to crash an affected application and deny service to legitimate users...
Libmspack CHM Decompression Denial of Service Vulnerability
Libmspack is a library of related Microsoft compression formats such as CAB, CHM, HLP, LIT, KWAJ and SZDD. A denial-of-service vulnerability exists in Libmspack CHM Decompression, which can be exploited by an attacker to crash an affected application and deny service to legitimate users...
Libmspack 'mspack/lzxd.c' Memory Corruption Vulnerability
Libmspack is a library of related Microsoft compression formats such as CAB, CHM, HLP, LIT, KWAJ and SZDD. A memory corruption vulnerability exists in Libmspack 'mspack/lzxd.c', which can be exploited by an attacker to obtain sensitive information or launch a denial of service attack...
Libmspack CHM Decompression Divide by Zero Denial of Service Vulnerability
Libmspack is a library of related Microsoft compression formats such as CAB, CHM, HLP, LIT, KWAJ and SZDD. Libmspack's handling of specially crafted CHM files suffers from a divide-by-zero denial-of-service vulnerability, which can be exploited by remote attackers to crash an application...
Libmspack mspack/mszipd.c Out-of-Bounds Read Denial of Service Vulnerability
Libmspack is a library of related Microsoft compression formats such as CAB, CHM, HLP, LIT, KWAJ and SZDD. An out-of-bounds read denial of service vulnerability in Libmspack mspack/mszipd.c allows attackers to exploit the vulnerability to crash an application...
Libmspack CHM decompression pointer arithmetic denial of service vulnerability (CNVD-2015-00970)
Libmspack is a library of related Microsoft compression formats such as CAB, CHM, HLP, LIT, KWAJ and SZDD. A pointer arithmetic overflow denial of service vulnerability exists in Libmspack's handling of specially crafted CHM files, which can be exploited by remote attackers to crash an applicatio...
Libmspack mspack/lzxd.c Out-of-Bounds Read Denial of Service Vulnerability
Libmspack is a library of related Microsoft compression formats such as CAB, CHM, HLP, LIT, KWAJ and SZDD. An out-of-bounds read denial of service vulnerability in Libmspack mspack/lzxd.c allows attackers to exploit the vulnerability to crash an application...
Libmspack CHM decompression pointer arithmetic denial of service vulnerability (CNVD-2015-00969)
Libmspack is a library of related Microsoft compression formats such as CAB, CHM, HLP, LIT, KWAJ and SZDD. A denial of service vulnerability exists in Libmspack's handling of CHM decompression, which can be exploited by remote attackers to crash an application...
Updated cabextract packages fix CVE-2014-9556
Updated cabextract packages fix security vulnerability: Libmspack, a library to provide compression and decompression of some file formats used by Microsoft, is embedded in cabextract. A specially crafted cab file can cause cabextract to hang forever. If cabextract is exposed to any...
MGASA-2015-0052 Updated cabextract packages fix CVE-2014-9556
Updated cabextract packages fix security vulnerability: Libmspack, a library to provide compression and decompression of some file formats used by Microsoft, is embedded in cabextract. A specially crafted cab file can cause cabextract to hang forever. If cabextract is exposed to any...
Libmspack 'mspack/mszipd.c' Buffer Overflow Vulnerability
Libmspack is a library that compresses and decompresses files in Microsoft's CAB, CHM and HLP formats. A buffer overflow vulnerability exists in Libmspack that stems from the program's failure to perform proper bounds checking on user-submitted input. An attacker could exploit this vulnerability ...
Libmspack Null Pointer Reference Denial of Service Vulnerability
Libmspack is a library of related Microsoft compression formats such as CAB, CHM, HLP, LIT, KWAJ and SZDD. Libmspack handles specially crafted CAB files with a null pointer reference denial of service vulnerability that allows attackers to exploit the vulnerability to crash applications...
CVE-2014-9556
Integer overflow in the qtmddecompress function in libmspack 0.4 allows remote attackers to cause a denial of service hang via a crafted CAB file, which triggers an infinite loop...
CVE-2014-9556
Integer overflow in the qtmddecompress function in libmspack 0.4 allows remote attackers to cause a denial of service hang via a crafted CAB file, which triggers an infinite loop...
DEBIAN-CVE-2014-9556
Integer overflow in the qtmddecompress function in libmspack 0.4 allows remote attackers to cause a denial of service hang via a crafted CAB file, which triggers an infinite loop...