Debian Security Advisory DSA 886-1 - Several vulnerabilities have been discovered in chmlib, a library for dealing with CHM format files.
cbf277d42ce4c03b6b50abb1868f45943ca6d3f2d2bef4a0a612bd0db6b72f43
iDEFENSE Security Advisory 10.28.05 - Remote exploitation of a stack overflow vulnerability in chmlib as included in various Linux distributions allows attackers to execute arbitrary code. The vulnerability specifically exists due to an unchecked memory copy while processing a CHM file. iDefense has confirmed the existence of this vulnerability in chmlib 0.35. It is suspected that all versions of chmlib are vulnerable.
ee23933cc3bb210a5faf6c8bbce7befe90f8cf66107a4479fd2909a768c974cf