libextractor

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description A library used to extract meta-data from files of arbitrary type
Version 1.6-2 [community]

Open

Group Affected Fixed Severity Status Ticket
AVG-541 1.6-1 Medium Vulnerable
Issue Group Severity Remote Type Description
CVE-2017-17440 AVG-541 Medium Yes Denial of service
GNU Libextractor 1.6 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted GIF, IT (Impulse...

Resolved

Group Affected Fixed Severity Status Ticket
AVG-471 1.5-1 1.6-1 Low Fixed
Issue Group Severity Remote Type Description
CVE-2017-15922 AVG-471 Low No Denial of service
In GNU Libextractor before 1.6, there is an out-of-bounds read in the EXTRACTOR_dvi_extract_method function in plugins/dvi_extractor.c.

Advisories

Date Advisory Group Severity Description
08 Nov 2017 ASA-201711-16 AVG-471 Low denial of service