14 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-14346
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU Libextractor before 1.7 has a stack-based buffer overflow in ecreadfilefunc unzip.c. CVE-2018-14346 Note that Nessus relies on the presence of the package a...
Mageia: Security Advisory (MGASA-2018-0388)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 LTS : libextractor vulnerabilities (USN-4641-1)
The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4641-1 advisory. It was discovered that Libextractor incorrectly handled zero sample rate. An attacker could possibly use this issue to cause a denial of service...
Ubuntu: Security Advisory (USN-4641-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-4641-1 libextractor vulnerabilities
It was discovered that Libextractor incorrectly handled zero sample rate. An attacker could possibly use this issue to cause a denial of service. CVE-2017-15266 It was discovered that Libextractor incorrectly handled certain FLAC metadata. An attacker could possibly use this issue to cause a deni...
USN-4641-1: libextractor vulnerabilities
It was discovered that Libextractor incorrectly handled zero sample rate. An attacker could possibly use this issue to cause a denial of service. CVE-2017-15266 It was discovered that Libextractor incorrectly handled certain FLAC metadata. An attacker could possibly use this issue to cause a deni...
Updated libextratcor packages fix security vulnerability
Several vulnerabilities were discovered in libextractor which may lead to denial of service or the execution of arbitrary code if a specially crafted file is opened CVE-2018-14346, CVE-2018-14347, CVE-2018-16430...
[SECURITY] [DLA-1478-1] libextractor security update
Package : libextractor Version : 1:1.3-2+deb8u2 CVE ID : CVE-2018-14346 CVE-2018-14347 Debian Bug : 904903 904905 It was discovered that there were two vulnerabilities in libextractor, a library to obtain metadata from files of arbitrary type. A stack-based buffer overflow in unzip.c...
Debian: Security Advisory (DLA-1478-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-14346
GNU Libextractor before 1.7 has a stack-based buffer overflow in ecreadfilefunc unzip.c...
CVE-2018-14346
GNU Libextractor before 1.7 has a stack-based buffer overflow in ecreadfilefunc unzip.c...
DEBIAN-CVE-2018-14346
GNU Libextractor before 1.7 has a stack-based buffer overflow in ecreadfilefunc unzip.c...
CVE-2018-14346
GNU Libextractor before 1.7 has a stack-based buffer overflow in ecreadfilefunc unzip.c...
CVE-2018-14346
CVE-2018-14346 affects GNU Libextractor: a stack-based buffer overflow in ec_read_file_func (unzip.c) present in versions before 1.7. Multiple connected sources (Ubuntu/Debian/Mageia/OpenVAS/Nessus OSV entries) indicate the issue can lead to denial of service and, in some disclosures, arbitrary c...