7.7 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
56.0%
In GNU Libextractor 1.4, there is a heap-based buffer overflow in the EXTRACTOR_png_extract_method function in plugins/png_extractor.c, related to processiTXt and stndup.
lists.gnu.org/archive/html/bug-libextractor/2017-10/msg00006.html
ftp.gnu.org/gnu/libextractor/libextractor-1.6.tar.gz
lists.debian.org/debian-lts-announce/2017/12/msg00000.html