suse · CVE-2018-14682

Quick triage

Priority: low Published: 2021-05-30 14:15:44 UTC Updated: 2026-04-17 15:19:45 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2018-14682 severity low: SUSE including 61 source package names (2.0.2-4.2.20:libmspack0-0.6-3.11.1, clamav-0.100.2-0.20.18.1, …), 140 product×package rows across 66 product lines (Container rancher/elemental-teal-iso/5.4, Container rancher/elemental-teal-rt/5.3, … (66 product lines)): Fixed 140.

Description:

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER() macro for CHM decompression.

cvelogic Threat Intelligence