Mandriva Linux Security Advisory : cabextract (MDVSA-2015:041)
Medium Nessus Plugin ID 81282
SynopsisThe remote Mandriva Linux host is missing a security update.
DescriptionUpdated cabextract packages fix security vulnerability :
Libmspack, a library to provide compression and decompression of some file formats used by Microsoft, is embedded in cabextract. A specially crafted cab file can cause cabextract to hang forever. If cabextract is exposed to any remotely-controlled user input, this issue can cause a denial-of-service (CVE-2014-9556).
SolutionUpdate the affected cabextract package.