34c7f77418
null pointer dereference on a crafted CAB: - https://bugs.debian.org/774665 CHM decompression: division by zero - https://bugs.debian.org/774725 CHM decompression: pointer arithmetic overflow - https://bugs.debian.org/774726 off-by-one buffer over-read in mspack/mszipd.c - https://bugs.debian.org/775498 off-by-one buffer under-read in mspack/lzxd.c - https://bugs.debian.org/775499 CHM decompression: another pointer arithmetic overflow - https://bugs.debian.org/775687