Fluid Attacks Database

Description

chmextract.c in the chmextract sample program, as distributed with libmspack before 0.8alpha, does not protect against absolute/relative pathnames in CHM files, leading to Directory Traversal. NOTE: the vendor disputes that this is a libmspack vulnerability, because chmextract.c was only intended as a source-code example, not a supported application

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
alpine v3.9	libmspack	=0.5_alpha-r1 \|\| =0.7.1_alpha-r0 \|\| >=0 <0.8_alpha-r0	0.8_alpha-r0
alpine v3.10	libmspack	=0.5_alpha-r1 \|\| =0.7.1_alpha-r0 \|\| >=0 <0.8_alpha-r0	0.8_alpha-r0
debian 12	libmspack	>=0 <0.8-1	0.8-1
alpine v3.11	libmspack	=0.5_alpha-r1 \|\| =0.7.1_alpha-r0 \|\| >=0 <0.8_alpha-r0	0.8_alpha-r0
debian 14	libmspack	>=0 <0.8-1	0.8-1
alpine v3.6	libmspack	=0.5_alpha-r1 \|\| =0.7.1_alpha-r0 \|\| >=0 <0.8_alpha-r0	0.8_alpha-r0
alpine v3.7	libmspack	=0.5_alpha-r1 \|\| =0.7.1_alpha-r0 \|\| >=0 <0.8_alpha-r0	0.8_alpha-r0
alpine v3.8	libmspack	=0.5_alpha-r1 \|\| =0.7.1_alpha-r0 \|\| >=0 <0.8_alpha-r0	0.8_alpha-r0
debian 11	libmspack	>=0 <0.8-1	0.8-1
debian 13	libmspack	>=0 <0.8-1	0.8-1

Aliases

1. CVE-2018-185862. NVD-2018-185863. OSV-ALPINE-2018-185864. OSV-2018-185865. OSV-DEBIAN-2018-185866. SECURITY-CVE-2018-185867. SECURITY-TRACKER-CVE-2018-18586

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.