ALSA-2020:1686

[ALSA-2020:1686] Low: libmspack security and bug fix update

Type:

security

Severity:

low

Release date:

2021-08-11

Description:

The libmspack packages contain a library providing compression and extraction of the Cabinet (CAB) file format used by Microsoft.

Security Fix(es):

* libmspack: buffer overflow in function chmd_read_headers() (CVE-2019-1010305)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References:

CVE-2019-1010305

Updated packages:

libmspack-0.7-0.3.alpha.el8.4.x86_64.rpm
libmspack-devel-0.7-0.3.alpha.el8.4.x86_64.rpm
libmspack-devel-0.7-0.3.alpha.el8.4.i686.rpm
libmspack-devel-0.7-0.3.alpha.el8.4.aarch64.rpm
libmspack-0.7-0.3.alpha.el8.4.aarch64.rpm
libmspack-0.7-0.3.alpha.el8.4.i686.rpm
libmspack-devel-0.7-0.3.alpha.el8.4.ppc64le.rpm
libmspack-0.7-0.3.alpha.el8.4.ppc64le.rpm

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.