libmspack 0.9.1alpha is affected by:... CVE-2019-1010305

4.3 AV AC AU C I A
发布: 2019-07-15
修订: 2019-11-22

libmspack 0.9.1alpha is affected by: Buffer Overflow. The impact is: Information Disclosure. The component is: function chmd_read_headers() in libmspack(file libmspack/mspack/chmd.c). The attack vector is: the victim must open a specially crafted chm file. The fixed version is: after commit 2f084136cfe0d05e5bf5703f3e83c6d955234b4d.