A deficiency has been reported in the way cabextract extracted certain Cabinet (*.cab) files, using the MZ-ZIP and Quantum decompressors. If a local user was tricked into opening a specially-crafted *.cab file, it could lead to infinite loop. References: [1] http://bugs.gentoo.org/show_bug.cgi?id=329891 Upstream patches: [2] http://libmspack.svn.sourceforge.net/viewvc/libmspack?view=revision&revision=90 [3] http://libmspack.svn.sourceforge.net/viewvc/libmspack?view=revision&revision=95 [4] http://libmspack.svn.sourceforge.net/viewvc/libmspack/libmspack/trunk/mspack/
This issue affects the versions of the cabextract package, as shipped with Fedora release of 12 and 13. Please fix.
Created cabextract tracking bugs for this issue Affects: fedora-all [bug 620457]
The CVE identifier of CVE-2010-2800 has been assigned to this.
cabextract (together with wine and openoffice.org per libmspack upstream) should use the system-wide libmspack library instead of an embedded copy