libmspack-0.5-0.8.alpha.el7
エラータID: AXSA:2020-580:02
The libmspack packages contain a library providing compression and extraction of the Cabinet (CAB) file format used by Microsoft.
Security Fix(es):
* libmspack: buffer overflow in function chmd_read_headers() (CVE-2019-1010305)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Asianux Server 7.9 Release Notes linked from the References section.
CVE-2019-1010305
libmspack 0.9.1alpha is affected by: Buffer Overflow. The impact is: Information Disclosure. The component is: function chmd_read_headers() in libmspack(file libmspack/mspack/chmd.c). The attack vector is: the victim must open a specially crafted chm file. The fixed version is: after commit 2f084136cfe0d05e5bf5703f3e83c6d955234b4d.
Update packages.
libmspack 0.9.1alpha is affected by: Buffer Overflow. The impact is: Information Disclosure. The component is: function chmd_read_headers() in libmspack(file libmspack/mspack/chmd.c). The attack vector is: the victim must open a specially crafted chm file. The fixed version is: after commit 2f084136cfe0d05e5bf5703f3e83c6d955234b4d.
N/A
SRPMS
- libmspack-0.5-0.8.alpha.el7.src.rpm
MD5: 36a4ec0cc73f5f7f60e80c27ed4b63dd
SHA-256: 951fdb22c6e2da42cae944a234c8de2856864887fd2c7459ac2c0fb449cb8379
Size: 657.70 kB
Asianux Server 7 for x86_64
- libmspack-0.5-0.8.alpha.el7.x86_64.rpm
MD5: e0452350339b7aeeb32a306c518eb612
SHA-256: 716b85e24901a6a6df269563afe1294c68c7f2b75cf07cf42143d889ee16b5cc
Size: 63.50 kB - libmspack-devel-0.5-0.8.alpha.el7.x86_64.rpm
MD5: dc2315a98ea97263660b3ee447bc03b1
SHA-256: fc9d3466c2bbc9e543e5f1eadd9da105bb2cb02aebbea65cf173697ec9c2e214
Size: 160.66 kB - libmspack-0.5-0.8.alpha.el7.i686.rpm
MD5: 7e5c23a7cef579e780249742474ac6ec
SHA-256: 657dfd289efd57e846bec0a08e4ac99ad6916f3702d3ef282e6b7a9b127a5eb2
Size: 64.00 kB