Information on source package libextractor

Available versions

ReleaseVersion
wheezy1:0.6.3-5
wheezy (security)1:0.6.3-5+deb7u1
jessie1:1.3-2
stretch1:1.3-4
buster1:1.6-2
sid1:1.6-2

Open issues

BugwheezyjessiestretchbustersidDescription
CVE-2017-17440vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedGNU Libextractor 1.6 allows remote attackers to cause a denial of ...
CVE-2017-15922fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedIn GNU Libextractor 1.4, there is an out-of-bounds read in the ...
CVE-2017-15602fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedIn GNU Libextractor 1.4, there is an integer signedness error for the ...
CVE-2017-15601fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedIn GNU Libextractor 1.4, there is a heap-based buffer overflow in the ...
CVE-2017-15600fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedIn GNU Libextractor 1.4, there is a NULL Pointer Dereference in the ...
CVE-2017-15267fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedIn GNU Libextractor 1.4, there is a NULL Pointer Dereference in ...
CVE-2017-15266fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedIn GNU Libextractor 1.4, there is a Divide-By-Zero in ...

Resolved issues

BugDescription
CVE-2009-3736ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as ...
CVE-2007-5393Heap-based buffer overflow in the CCITTFaxStream::lookChar method in ...
CVE-2007-5392Integer overflow in the DCTStream::reset method in xpdf/Stream.cc in ...
CVE-2007-4352Array index error in the DCTStream::readProgressiveDataUnit method in ...
CVE-2007-3387Integer overflow in the StreamPredictor::StreamPredictor function in ...
CVE-2006-2458Multiple heap-based buffer overflows in Libextractor 0.5.13 and ...
CVE-2006-0301Heap-based buffer overflow in Splash.cc in xpdf, as used in other ...
CVE-2005-3628Buffer overflow in the JBIG2Bitmap::JBIG2Bitmap function in ...
CVE-2005-3627Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, ...
CVE-2005-3626Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, ...
CVE-2005-3625Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, ...
CVE-2005-3624The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, ...
CVE-2005-3193Heap-based buffer overflow in the JPXStream::readCodestream function ...
CVE-2005-3192Heap-based buffer overflow in the StreamPredictor function in Xpdf ...
CVE-2005-3191Multiple heap-based buffer overflows in the (1) ...
CVE-2005-2097xpdf and kpdf do not properly validate the "loca" table in PDF files, ...

Security announcements

DSA / DLADescription
DLA-1198-1libextractor - security update
DSA-1349-1libextractor - integer overflow
DSA-1081-1libextractor - buffer overflow
DSA-998-1libextractor - several
DSA-936-1libextractor - buffer overflows

Search for package or bug name: Reporting problems