CVE-2018-14346

CVE-2018-14346 affects GNU Libextractor: a stack-based buffer overflow in ec_read_file_func (unzip.c) present in versions before 1.7. Multiple connected sources (Ubuntu/Debian/Mageia/OpenVAS/Nessus OSV entries) indicate the issue can lead to denial of service and, in some disclosures, arbitrary c...

CVE-2018-14347

CVE-2018-14347 affects GNU Libextractor prior to 1.7, with an infinite loop in EXTRACTOR_mpeg_extract_method (mpeg_extractor.c). Publicly available documents corroborate the issue under libextractor across multiple distributions, including Debian (DSA-4290) and Mageia advisories, which indicate p...