ELSA-2019-2049

Опубликовано: 13 авг. 2019

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2019-2049: libmspack security update (MODERATE)

[0.5-0.7.alpha]

Fixes for CVE-2018-18584 CVE-2018-18585. resolves: rhbz#1648384 rhbz#1648385

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

libmspack

0.5-0.7.alpha.el7

libmspack-devel

0.5-0.7.alpha.el7

Oracle Linux x86_64

libmspack

0.5-0.7.alpha.el7

libmspack-devel

0.5-0.7.alpha.el7

Связанные CVE

CVE-2018-18584

CVE-2018-18585

Ссылки на источники

Связанные уязвимости

SUSE-SU-2019:13992-1

suse-cvrf

почти 7 лет назад

Security update for libmspack

SUSE-SU-2019:0748-1

suse-cvrf

почти 7 лет назад

Security update for libmspack

SUSE-SU-2020:2711-1

suse-cvrf

больше 5 лет назад

Security update for libmspack

CVE-2018-18585

CVSS3: 4.3

ubuntu

больше 7 лет назад

chmd_read_headers in mspack/chmd.c in libmspack before 0.8alpha accepts a filename that has '\0' as its first or second character (such as the "/\0" name).

CVE-2018-18585

CVSS3: 3.3

redhat

больше 7 лет назад

chmd_read_headers in mspack/chmd.c in libmspack before 0.8alpha accepts a filename that has '\0' as its first or second character (such as the "/\0" name).