CVE-2018-14679

CVE-2018-14679 affects libmspack (mspack/chmd.c) with an off-by-one error in CHM PMGI/PMGL chunk number validation, reported to cause a denial of service through an uninitialized data dereference and crash when using versions before 0.7alpha. Connected advisories (ALAS-2019-1152, RH/CentOS errata...

CVE-2018-14681

The CVE-2018-14681 entry concerns libmspack (component: kwajd_read_headers in mspack/kwajd.c) with an off-by-one/file header extension handling issue in versions before 0.7alpha. The vulnerability allows a one- or two-byte overwrite caused by Bad KWAJ file header extensions, as documented in the ...

CVE-2018-14682

CVE-2018-14682 affects libmspack (CHM decompression) with an off-by-one error in the TOLOWER() macro in mspack/chmd.c (pre-0.7alpha). Related advisories note additional CHM/CHM-related issues (14679, 14680) and KWAD header issues (14681). Affected: libmspack; potential impact described in advisor...

CVE-2018-14680

CVE-2018-14680 affects libmspack (mspack/chmd.c) prior to 0.7alpha. The vulnerability arises because CHM decompression does not reject blank CHM filenames, enabling an input that could lead to a partial impact on availability (per CVSS metrics). The issue is documented as an off-by-one/invalid-da...