CVE-2019-1010305

Опубликовано: 15 июл. 2019

Источник: redhat

CVSS3: 2.5

EPSS Низкий

Описание

libmspack 0.9.1alpha is affected by: Buffer Overflow. The impact is: Information Disclosure. The component is: function chmd_read_headers() in libmspack(file libmspack/mspack/chmd.c). The attack vector is: the victim must open a specially crafted chm file. The fixed version is: after commit 2f084136cfe0d05e5bf5703f3e83c6d955234b4d.

Отчет

This issue affects versions of libmspack as shipped with Red Hat Enterprise Linux 7 and 8. This flaw was rated as having a Low security impact by the Red Hat Product Security Team.

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-120

https://bugzilla.redhat.com/show_bug.cgi?id=1730568libmspack: buffer overflow in function chmd_read_headers()

EPSS

Процентиль: 63%

0.00465

Низкий

2.5 Low

CVSS3

Связанные уязвимости

CVE-2019-1010305

CVSS3: 5.5

ubuntu

почти 6 лет назад

CVE-2019-1010305

CVSS3: 5.5

nvd

почти 6 лет назад

CVE-2019-1010305

CVSS3: 5.5

debian

почти 6 лет назад

libmspack 0.9.1alpha is affected by: Buffer Overflow. The impact is: I ...

openSUSE-SU-2020:0746-1

suse-cvrf

около 5 лет назад

Security update for libmspack

SUSE-SU-2020:1493-1

suse-cvrf

около 5 лет назад

Security update for libmspack

EPSS

Процентиль: 63%

0.00465

Низкий

2.5 Low

CVSS3