Showing 1 - 2 of 2

CVE-2018-14347

Status Candidate

Overview

GNU Libextractor before 1.7 contains an infinite loop vulnerability in EXTRACTOR_mpeg_extract_method (mpeg_extractor.c).

Ubuntu Security Notice USN-4641-1: Posted Nov 24, 2020; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4641-1 - It was discovered that Libextractor incorrectly handled zero sample rate. An attacker could possibly use this issue to cause a denial of service. It was discovered that Libextractor incorrectly handled certain FLAC metadata. An attacker could possibly use this issue to cause a denial of service. It was discovered that Libextractor incorrectly handled certain specially crafted files. An attacker could possibly use this issue to cause a denial of service. Various other issues were also addressed.; tags | advisory, denial of service; systems | linux, ubuntu; advisories | CVE-2017-15266, CVE-2017-15267, CVE-2017-15601, CVE-2017-15602, CVE-2017-15922, CVE-2017-17440, CVE-2018-14346, CVE-2018-14347, CVE-2018-20431; SHA-256 | 5352ee994314ed020f2d2fc940e7774d864f1c4317a46818006d8a4604874f59; Download | Favorite | View

Debian Security Advisory 4290-1: Posted Sep 11, 2018; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4290-1 - Several vulnerabilities were discovered in libextractor, a library to extract arbitrary meta-data from files, which may lead to denial of service or the execution of arbitrary code if a specially crafted file is opened.; tags | advisory, denial of service, arbitrary, vulnerability; systems | linux, debian; advisories | CVE-2018-14346, CVE-2018-14347, CVE-2018-16430; SHA-256 | 22f2b4197f107ee0924e3d5f0ca28d3ef60181f207deefbe95c481d80c8c2480; Download | Favorite | View

Page 1 of 1 Back 1 Next