CVE-2014-9556 – Mandriva Linux Security Advisory 2015-041

https://notcve.org/view.php?id=CVE-2014-9556

03 Feb 2015 — Integer overflow in the qtmd_decompress function in libmspack 0.4 allows remote attackers to cause a denial of service (hang) via a crafted CAB file, which triggers an infinite loop. Desbordamiento de enteros en la función qtmd_decompress en libmspack 0.4 permite a atacantes remotos causar una denegación de servicio (cuelgue) a través de un fichero CAB manipulado, lo que provoca un bucle infinito. Libmspack, a library to provide compression and decompression of some file formats used by Microsoft, is embedd... • http://advisories.mageia.org/MGASA-2015-0052.html • CWE-189: Numeric Errors •