115 matches found
Stack overflow
GNU Libextractor before 1.7 has a stack-based buffer overflow in ecreadfilefunc unzip.c...
CVE-2018-14346
GNU Libextractor before 1.7 has a stack-based buffer overflow in ecreadfilefunc unzip.c...
CVE-2018-14346
GNU Libextractor before 1.7 has a stack-based buffer overflow in ecreadfilefunc unzip.c...
CVE-2018-14347
CVE-2018-14347 affects GNU Libextractor prior to 1.7, with an infinite loop in EXTRACTOR_mpeg_extract_method (mpeg_extractor.c). Publicly available documents corroborate the issue under libextractor across multiple distributions, including Debian (DSA-4290) and Mageia advisories, which indicate p...
CVE-2018-14347
GNU Libextractor before 1.7 contains an infinite loop vulnerability in EXTRACTORmpegextractmethod mpegextractor.c...
CVE-2018-14346
GNU Libextractor before 1.7 has a stack-based buffer overflow in ecreadfilefunc unzip.c...
CVE-2018-14347
GNU Libextractor before 1.7 contains an infinite loop vulnerability in EXTRACTORmpegextractmethod mpegextractor.c...
CVE-2018-14346
GNU Libextractor before 1.7 has a stack-based buffer overflow in ecreadfilefunc unzip.c...
MGASA-2018-0043 Updated libextractor packages fix security vulnerability
GNU Libextractor 1.6 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted GIF, IT Impulse Tracker, NSFE, S3M Scream Tracker 3, SID, or XM eXtended Module file, as demonstrated by the EXTRACTORxmextractmethod function in...
GNU Libextractor Denial of Service Vulnerability (CNVD-2018-00306)
GNU Libextractor is a set of libraries developed by the GNU Project for extracting metadata from files. A security vulnerability exists in GNU Libextractor version 1.6. A remote attacker can exploit this vulnerability to cause a denial of service null pointer backreference and application crash...
CVE-2017-17440
GNU Libextractor 1.6 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted GIF, IT Impulse Tracker, NSFE, S3M Scream Tracker 3, SID, or XM eXtended Module file, as demonstrated by the EXTRACTORxmextractmethod function in...
CVE-2017-17440
GNU Libextractor 1.6 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted GIF, IT Impulse Tracker, NSFE, S3M Scream Tracker 3, SID, or XM eXtended Module file, as demonstrated by the EXTRACTORxmextractmethod function in...
CVE-2017-17440
GNU Libextractor 1.6 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted GIF, IT Impulse Tracker, NSFE, S3M Scream Tracker 3, SID, or XM eXtended Module file, as demonstrated by the EXTRACTORxmextractmethod function in...
CVE-2017-17440
GNU Libextractor 1.6 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted GIF, IT Impulse Tracker, NSFE, S3M Scream Tracker 3, SID, or XM eXtended Module file, as demonstrated by the EXTRACTORxmextractmethod function in...
CVE-2017-17440
CVE-2017-17440 affects GNU Libextractor 1.6, where processing crafted GIF, IT, NSFE, S3M, SID, or XM files can trigger a NULL pointer dereference and crash (denial of service). Multiple advisories confirm the vulnerability in Libextractor 1.6 and note upstream fixes; a Debian/Arch/Mageia/Fedora/U...
CVE-2017-17440
GNU Libextractor 1.6 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted GIF, IT Impulse Tracker, NSFE, S3M Scream Tracker 3, SID, or XM eXtended Module file, as demonstrated by the EXTRACTORxmextractmethod function in...
Out-of-bounds
In GNU Libextractor 1.4, there is an out-of-bounds read in the EXTRACTORdviextractmethod function in plugins/dviextractor.c...
CVE-2017-15922
In GNU Libextractor 1.4, there is an out-of-bounds read in the EXTRACTORdviextractmethod function in plugins/dviextractor.c...
CVE-2017-15922
In GNU Libextractor 1.4, there is an out-of-bounds read in the EXTRACTORdviextractmethod function in plugins/dviextractor.c...
CVE-2017-15922
In GNU Libextractor 1.4, there is an out-of-bounds read in the EXTRACTORdviextractmethod function in plugins/dviextractor.c...