Unrated severityNVD Advisory· Published Jun 11, 2015· Updated Jun 17, 2026
CVE-2015-4471
CVE-2015-4471
Description
Off-by-one error in the lzxd_decompress function in lzxd.c in libmspack before 0.5 allows remote attackers to cause a denial of service (buffer under-read and application crash) via a crafted CAB archive.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
21- osv-coords19 versionspkg:rpm/suse/cabextract&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP3pkg:rpm/suse/cabextract&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4pkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP3pkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4pkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3pkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-TERADATApkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP3pkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP3pkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4pkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1
< 1.2-2.12.1+ 18 more
- (no CPE)range: < 1.2-2.12.1
- (no CPE)range: < 1.2-2.12.1
- (no CPE)range: < 0.0.20060920alpha-74.10.1
- (no CPE)range: < 0.0.20060920alpha-74.10.1
- (no CPE)range: < 0.4-14.4
- (no CPE)range: < 0.4-14.4
- (no CPE)range: < 0.0.20060920alpha-74.10.1
- (no CPE)range: < 0.0.20060920alpha-74.10.1
- (no CPE)range: < 0.0.20060920alpha-74.10.1
- (no CPE)range: < 0.4-14.4
- (no CPE)range: < 0.4-14.4
- (no CPE)range: < 0.0.20060920alpha-74.10.1
- (no CPE)range: < 0.0.20060920alpha-74.10.1
- (no CPE)range: < 0.4-14.4
- (no CPE)range: < 0.4-14.4
- (no CPE)range: < 0.0.20060920alpha-74.10.1
- (no CPE)range: < 0.0.20060920alpha-74.10.1
- (no CPE)range: < 0.4-14.4
- (no CPE)range: < 0.4-14.4
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.