CVE-2014-9556

Опубликовано: 03 фев. 2015

Источник: debian

EPSS Низкий

Описание

Integer overflow in the qtmd_decompress function in libmspack 0.4 allows remote attackers to cause a denial of service (hang) via a crafted CAB file, which triggers an infinite loop.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libmspack	fixed	0.4-2		package
cabextract	fixed	1.4-5		package
cabextract	no-dsa		wheezy	package
cabextract	no-dsa		squeeze	package

Примечания

Starting with 1.4-5 cabextract uses the mspack system library

EPSS

Процентиль: 79%

0.01286

Низкий

Связанные уязвимости

CVE-2014-9556

ubuntu

около 11 лет назад

Integer overflow in the qtmd_decompress function in libmspack 0.4 allows remote attackers to cause a denial of service (hang) via a crafted CAB file, which triggers an infinite loop.

CVE-2014-9556

nvd

около 11 лет назад

Integer overflow in the qtmd_decompress function in libmspack 0.4 allows remote attackers to cause a denial of service (hang) via a crafted CAB file, which triggers an infinite loop.

SUSE-SU-2015:0508-1

suse-cvrf

почти 11 лет назад

Security update for libmspack

SUSE-SU-2015:0506-1

suse-cvrf

почти 11 лет назад

Security update for libmspack

SUSE-SU-2015:0366-1

suse-cvrf

около 11 лет назад

Security update for libmspack

EPSS

Процентиль: 79%

0.01286

Низкий