Twenty Year Anniversary

Debian Security Advisory 4290-1

Debian Security Advisory 4290-1
Posted Sep 11, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4290-1 - Several vulnerabilities were discovered in libextractor, a library to extract arbitrary meta-data from files, which may lead to denial of service or the execution of arbitrary code if a specially crafted file is opened.

tags | advisory, denial of service, arbitrary, vulnerability
systems | linux, debian
advisories | CVE-2018-14346, CVE-2018-14347, CVE-2018-16430
MD5 | 95ada67ea55021facccf6ed6bd2c100d

Debian Security Advisory 4290-1

Change Mirror Download
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4290-1 security@debian.org
https://www.debian.org/security/ Salvatore Bonaccorso
September 10, 2018 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : libextractor
CVE ID : CVE-2018-14346 CVE-2018-14347 CVE-2018-16430
Debian Bug : 904903 904905 907987

Several vulnerabilities were discovered in libextractor, a library to
extract arbitrary meta-data from files, which may lead to denial of
service or the execution of arbitrary code if a specially crafted file
is opened.

For the stable distribution (stretch), these problems have been fixed in
version 1:1.3-4+deb9u2.

We recommend that you upgrade your libextractor packages.

For the detailed security status of libextractor please refer to its
security tracker page at:
https://security-tracker.debian.org/tracker/libextractor

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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-----END PGP SIGNATURE-----

Comments

RSS Feed Subscribe to this comment feed

No comments yet, be the first!

Login or Register to post a comment

File Archive:

October 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    26 Files
  • 2
    Oct 2nd
    15 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    15 Files
  • 6
    Oct 6th
    2 Files
  • 7
    Oct 7th
    3 Files
  • 8
    Oct 8th
    23 Files
  • 9
    Oct 9th
    16 Files
  • 10
    Oct 10th
    15 Files
  • 11
    Oct 11th
    19 Files
  • 12
    Oct 12th
    16 Files
  • 13
    Oct 13th
    2 Files
  • 14
    Oct 14th
    2 Files
  • 15
    Oct 15th
    15 Files
  • 16
    Oct 16th
    20 Files
  • 17
    Oct 17th
    19 Files
  • 18
    Oct 18th
    21 Files
  • 19
    Oct 19th
    16 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close