CVE-2014-9556

Опубликовано: 03 фев. 2015

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5

Описание

Integer overflow in the qtmd_decompress function in libmspack 0.4 allows remote attackers to cause a denial of service (hang) via a crafted CAB file, which triggers an infinite loop.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	1.6-1.1
cosmic	not-affected	1.6-1.1
devel	not-affected	1.6-1.1
disco	not-affected	1.6-1.1
eoan	not-affected	1.6-1.1
esm-apps/bionic	not-affected	1.6-1.1
esm-apps/focal	not-affected	1.6-1.1
esm-apps/jammy	not-affected	1.6-1.1
esm-apps/xenial	not-affected	1.6-1

Показывать по

Релиз	Статус	Примечание
artful	not-affected	0.4-3
bionic	not-affected	0.4-3
cosmic	not-affected	0.4-3
devel	not-affected	0.4-3
disco	not-affected	0.4-3
eoan	not-affected	0.4-3
esm-infra-legacy/trusty	released	0.4-1ubuntu0.1~esm1
esm-infra/bionic	not-affected	0.4-3
esm-infra/focal	not-affected	0.4-3
esm-infra/xenial	not-affected	0.4-3

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2014-9556

EPSS

Процентиль: 79%

0.01286

Низкий

5 Medium

CVSS2

Связанные уязвимости

CVE-2014-9556

nvd

около 11 лет назад

Integer overflow in the qtmd_decompress function in libmspack 0.4 allows remote attackers to cause a denial of service (hang) via a crafted CAB file, which triggers an infinite loop.

CVE-2014-9556

debian

около 11 лет назад

Integer overflow in the qtmd_decompress function in libmspack 0.4 allo ...

SUSE-SU-2015:0508-1

suse-cvrf

почти 11 лет назад

Security update for libmspack

SUSE-SU-2015:0506-1

suse-cvrf

почти 11 лет назад

Security update for libmspack

SUSE-SU-2015:0366-1

suse-cvrf

около 11 лет назад

Security update for libmspack

EPSS

Процентиль: 79%

0.01286

Низкий

5 Medium

CVSS2

CVE-2014-9556

Описание

Пакет cabextract

Пакет libmspack

Ссылки на источники

Связанные уязвимости