CVE-2019-15531

GNU Libextractor up to version 1.9 is affected by a heap-based buffer over-read in the DVI extractor (EXTRACTOR_dvi_extract_method in plugins/dvi_extractor.c). This could enable reading beyond allocated buffers. Public advisories (Debian DLA-2851-1, Mageia MGASA-2020-0015, OpenVAS/Nessus entries,...