MGASA-2018-0455 Updated libmspack/cabextract packages fix security vulnerabilities

Hanno Böck discovered that libmspack incorrectly handled certain CHM files. An attacker could possibly use this issue to cause a denial of service CVE-2018-14679, CVE-2018-14680. Jakub Wilk discovered that libmspack incorrectly handled certain KWAJ files. An attacker could possibly use this issue...

PT-2018-2693 · None +5 · Libmspack +6

Name of the Vulnerable Software and Affected Versions: libmspack versions prior to 0.8alpha cabextract versions prior to 1.8 Description: The issue is related to an out-of-bounds write in the CAB block input buffer, which can be exploited by a remote attacker to execute arbitrary code or cause a...