Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-jrp9-m5qh-vr83

Опубликовано: 13 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 6.5

Описание

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitialized data dereference and application crash).

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitialized data dereference and application crash).

Ссылки

EPSS

Процентиль: 77%
0.01075
Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2018-14679

Дефекты

CWE-193

Связанные уязвимости

ubuntu логотип

CVE-2018-14679

CVSS3: 6.5
ubuntu
больше 7 лет назад

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitialized data dereference and application crash).

redhat логотип

CVE-2018-14679

CVSS3: 4
redhat
больше 7 лет назад

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitialized data dereference and application crash).

nvd логотип

CVE-2018-14679

CVSS3: 6.5
nvd
больше 7 лет назад

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitialized data dereference and application crash).

debian логотип

CVE-2018-14679

CVSS3: 6.5
debian
больше 7 лет назад

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. ...

suse-cvrf логотип

SUSE-SU-2021:3859-1

suse-cvrf
почти 4 года назад

Security update for clamav

EPSS

Процентиль: 77%
0.01075
Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2018-14679

Дефекты

CWE-193