libextractor
| Link | package | bugs open | bugs closed | Wiki | GitHub | web search |
| Description | A library used to extract meta-data from files of arbitrary type |
| Version | 1.13-1 [extra] |
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-541 | 1.6-3 | 1.7-1 | Medium | Fixed | |
| AVG-471 | 1.5-1 | 1.6-1 | Low | Fixed |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2017-17440 | AVG-541 | Medium | Yes | Denial of service | GNU Libextractor 1.6 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted GIF, IT (Impulse... |
| CVE-2017-15922 | AVG-471 | Low | No | Denial of service | In GNU Libextractor before 1.6, there is an out-of-bounds read in the EXTRACTOR_dvi_extract_method function in plugins/dvi_extractor.c. |
Advisories
| Date | Advisory | Group | Severity | Type |
|---|---|---|---|---|
| 26 Jul 2018 | ASA-201807-16 | AVG-541 | Medium | denial of service |
| 08 Nov 2017 | ASA-201711-16 | AVG-471 | Low | denial of service |