In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8, the CAB block input buffer is one byte too small for the maximal Quantum block, leading to an out-of-bounds write.

References

bugzilla.redhat.com/show_bug.cgi?id=1644214

www.cve.org/CVERecord?id=CVE-2018-18584 https://nvd.nist.gov/vuln/detail/CVE-2018-18584

openvas 18

osv 2

veracode 1

nessus 28

alpinelinux 1

nvd 1

cve 1

prion 1

checkpoint_advisories 1

ubuntucve 1

debiancve 1

cvelist 1

ubuntu 3

oraclelinux 1

amazon 1

centos 1

redhat 1

debian 1

photon 5

fedora 6

mageia 1

gentoo 1

openvas

Huawei EulerOS: Security Advisory for libmspack (EulerOS-SA-2021-1318)

2021-02-22 00:00:00

Huawei EulerOS: Security Advisory for libmspack (EulerOS-SA-2019-2261)

2020-01-23 00:00:00

Huawei EulerOS: Security Advisory for libmspack (EulerOS-SA-2020-2287)

2020-10-30 00:00:00

osv

CVE-2018-18584

2018-10-23 02:29:00

libmspack - security update

2018-10-26 00:00:00

veracode

Denial Of Service (Dos)

2019-08-08 00:07:15

nessus

Photon OS 2.0: Libmspack PHSA-2021-2.0-0348

2021-05-26 00:00:00

Photon OS 1.0: Libmspack PHSA-2021-1.0-0391

2021-05-26 00:00:00

EulerOS 2.0 SP8 : libmspack (EulerOS-SA-2022-2468)

2022-10-09 00:00:00

alpinelinux

CVE-2018-18584

2018-10-23 02:29:00

nvd

CVE-2018-18584

2018-10-23 02:29:00

cve

CVE-2018-18584

2018-10-23 02:29:00

prion

Out-of-bounds

2018-10-23 02:29:00

checkpoint_advisories

Libmspack Project Buffer Overflow (CVE-2018-18584)

2019-02-19 00:00:00

ubuntucve

CVE-2018-18584

2018-10-22 00:00:00

debiancve

CVE-2018-18584

2018-10-23 02:29:00

cvelist

CVE-2018-18584

2018-10-23 00:00:00

ubuntu

libmspack vulnerabilities

2018-11-12 00:00:00

ClamAV vulnerabilities

2018-11-13 00:00:00

ClamAV vulnerabilities

2018-11-13 00:00:00

oraclelinux

libmspack security update

2019-08-13 00:00:00

amazon

Medium: libmspack

2019-10-08 21:55:00

centos

libmspack security update

2019-08-30 03:17:15

redhat

(RHSA-2019:2049) Moderate: libmspack security update

2019-08-06 07:55:28

debian

[SECURITY] [DLA 1555-1] libmspack security update

2018-10-26 20:56:37

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0348

2021-05-20 00:00:00

Critical Photon OS Security Update - PHSA-2021-0348

2021-05-20 00:00:00

Important Photon OS Security Update - PHSA-2020-3.0-0085

2020-05-02 00:00:00

fedora

[SECURITY] Fedora 29 Update: cabextract-1.9-1.fc29

2018-11-13 02:25:11

[SECURITY] Fedora 29 Update: libmspack-0.9.1-0.1.alpha.fc29

2018-11-13 02:25:13

[SECURITY] Fedora 28 Update: cabextract-1.9-1.fc28

2018-11-13 02:28:31

mageia

Updated libmspack/cabextract packages fix security vulnerabilities

2018-11-18 01:23:26

gentoo

cabextract, libmspack: Multiple vulnerabilities

2019-03-28 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.345 Low

EPSS

Percentile

97.1%

JSON

Related for RH:CVE-2018-18584