Описание
In GNU Libextractor 1.4, there is a NULL Pointer Dereference in flac_metadata in flac_extractor.c.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libextractor | fixed | 1:1.6-1 | package | |
| libextractor | fixed | 1:1.3-4+deb9u1 | stretch | package |
| libextractor | fixed | 1:1.3-2+deb8u1 | jessie | package |
Примечания
http://lists.gnu.org/archive/html/bug-libextractor/2017-10/msg00003.html
http://openwall.com/lists/oss-security/2017/10/11/1
https://bugzilla.redhat.com/show_bug.cgi?id=1499600
Fixed by: https://git.gnunet.org/libextractor.git/commit/?id=6095d7132b57fc7368fc7a40bab2a71b735724d2
EPSS
Процентиль: 71%
0.0066
Низкий
Связанные уязвимости
CVSS3: 7.5
ubuntu
больше 8 лет назад
In GNU Libextractor 1.4, there is a NULL Pointer Dereference in flac_metadata in flac_extractor.c.
CVSS3: 7.5
nvd
больше 8 лет назад
In GNU Libextractor 1.4, there is a NULL Pointer Dereference in flac_metadata in flac_extractor.c.
CVSS3: 7.5
github
больше 3 лет назад
In GNU Libextractor 1.4, there is a NULL Pointer Dereference in flac_metadata in flac_extractor.c.
EPSS
Процентиль: 71%
0.0066
Низкий