5 matches found
SUSE: Security Advisory (SUSE-SU-2015:2215-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED12 / SLES12 Security Update : libmspack (SUSE-SU-2016:0011-1)
libmspack was updated to fix security issues. These security issues were fixed : - CVE-2014-9732: The cabdextract function in cabd.c in libmspack did not properly maintain decompression callbacks in certain cases where an invalid file follows a valid file, which allowed remote attackers to cause ...
SUSE SLED11 / SLES11 Security Update : libmspack (SUSE-SU-2015:2215-1)
libmspack was updated to fix several security vulnerabilities. - Fix NULL pointer dereference on a crafted CAB. bsc934524, CVE-2014-9732 - Fix denial of service while processing crafted CHM file. bsc934525, CVE-2015-4467 - Fix denial of service while processing crafted CHM file. bsc934529,...
CVE-2015-4467
The chmdinitdecomp function in chmd.c in libmspack before 0.5 does not properly validate the reset interval, which allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted CHM file...
CVE-2015-4467
CVE-2015-4467 relates to libmspack prior to 0.5, where chmd_init_decomp does not validate the reset interval, enabling a remote attacker to trigger a divide-by-zero in CHM processing and crash the application (DoS). The issue is rooted in improper bounds/interval handling in the chmd.c path; an c...