Medium severity6.5OSV Advisory· Published May 30, 2018· Updated Jun 17, 2026
CVE-2018-11434
CVE-2018-11434
Description
The buffer_fill64 function in compression.c in Libmobi 0.3 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted mobi file.
Affected products
2- Range: v0.2, v0.3
Patches
Vulnerability mechanics
References
1- seclists.org/fulldisclosure/2018/May/48nvdExploitMailing ListThird Party Advisory
News mentions
0No linked articles in our index yet.