CVE-2015-4469Improper Restriction of Operations within the Bounds of a Memory Buffer in Project Libmspack

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer7 documents6 sources
Severity
4.3MEDIUMNVD
EPSS
0.4%
top 40.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Libmspack Project Libmspack
Timeline
PublishedJun 11
Latest updateOct 1

Description

The chmd_read_headers function in chmd.c in libmspack before 0.5 does not validate name lengths, which allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted CHM file.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages3 packages

Debianlibmspack_project/libmspack< 0.4-3+3
Ubuntulibmspack_project/libmspack< 0.4-1ubuntu0.1~esm2

🔴Vulnerability Details

4
OSV
libmspack vulnerabilities2025-10-01
GHSA
GHSA-fxp4-g2xw-h64c: The chmd_read_headers function in chmd2022-05-17
CVEList
CVE-2015-4469: The chmd_read_headers function in chmd2015-06-11
OSV
CVE-2015-4469: The chmd_read_headers function in chmd2015-06-11

📋Vendor Advisories

2
Ubuntu
libmspack vulnerabilities2025-10-01
Debian
CVE-2015-4469: libmspack - The chmd_read_headers function in chmd.c in libmspack before 0.5 does not valida...2015
CVE-2015-4469 — Project Libmspack vulnerability | cvebase