Sign in Subscribe

rpm package

suse/libmspack&distro=SUSE Linux Enterprise Micro 5.1

pkg:rpm/suse/libmspack&distro=SUSE%20Linux%20Enterprise%20Micro%205.1

Vulnerabilities (1)

CVE	Sev	CVSS	KEV	Affected versions	Fixed in	Published	Description
CVE-2018-18586		—		< 0.6-3.14.1	0.6-3.14.1	Oct 23, 2018	chmextract.c in the chmextract sample program, as distributed with libmspack before 0.8alpha, does not protect against absolute/relative pathnames in CHM files, leading to Directory Traversal. NOTE: the vendor disputes that this is a libmspack vulnerability, because chmextract.c

CVE-2018-18586Oct 23, 2018
affected < 0.6-3.14.1fixed 0.6-3.14.1
chmextract.c in the chmextract sample program, as distributed with libmspack before 0.8alpha, does not protect against absolute/relative pathnames in CHM files, leading to Directory Traversal. NOTE: the vendor disputes that this is a libmspack vulnerability, because chmextract.c