Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/libextractor@1:1.8-2%2Bdeb10u1
purl pkg:deb/debian/libextractor@1:1.8-2%2Bdeb10u1
Next non-vulnerable version 1:1.11-2
Latest non-vulnerable version 1:1.11-2
Risk 3.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-tubv-28uu-2uh8
Aliases:
CVE-2019-15531
GNU Libextractor through 1.9 has a heap-based buffer over-read in the function EXTRACTOR_dvi_extract_method in plugins/dvi_extractor.c.
1:1.11-2
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (12)
Vulnerability Summary Aliases
VCID-1xdm-2dj5-jkc7 security update CVE-2018-14347
VCID-2auw-wc6u-ekcs security update CVE-2018-20431
VCID-3bg1-rwze-kuhw In GNU Libextractor 1.4, there is a heap-based buffer overflow in the EXTRACTOR_png_extract_method function in plugins/png_extractor.c, related to processiTXt and stndup. CVE-2017-15601
VCID-5ymr-xk84-8uh3 In GNU Libextractor 1.4, there is an integer signedness error for the chunk size in the EXTRACTOR_nsfe_extract_method function in plugins/nsfe_extractor.c, leading to an infinite loop for a crafted size. CVE-2017-15602
VCID-ahs6-mesc-yqhm security update CVE-2018-20430
VCID-bdsg-x852-wfgn GNU Libextractor 1.6 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted GIF, IT (Impulse Tracker), NSFE, S3M (Scream Tracker 3), SID, or XM (eXtended Module) file, as demonstrated by the EXTRACTOR_xm_extract_method function in plugins/xm_extractor.c. CVE-2017-17440
VCID-kpcg-4av4-gka8 security update CVE-2018-14346
VCID-kxcz-d7a4-77e8 security update CVE-2018-16430
VCID-tc8j-82se-qfbk In GNU Libextractor 1.4, there is an out-of-bounds read in the EXTRACTOR_dvi_extract_method function in plugins/dvi_extractor.c. CVE-2017-15922
VCID-x3k6-yrp9-9ud9 In GNU Libextractor 1.4, there is a NULL Pointer Dereference in flac_metadata in flac_extractor.c. CVE-2017-15267
VCID-xyab-d3gr-zkdw In GNU Libextractor 1.4, there is a Divide-By-Zero in EXTRACTOR_wav_extract_method in wav_extractor.c via a zero sample rate. CVE-2017-15266
VCID-zd6d-q8xx-zud6 In GNU Libextractor 1.4, there is a NULL Pointer Dereference in the EXTRACTOR_nsf_extract_method function of plugins/nsf_extractor.c. CVE-2017-15600

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T00:33:06.510531+00:00 Debian Oval Importer Fixing VCID-zd6d-q8xx-zud6 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-16T00:20:40.275510+00:00 Debian Oval Importer Fixing VCID-kxcz-d7a4-77e8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T23:31:54.567054+00:00 Debian Oval Importer Fixing VCID-5ymr-xk84-8uh3 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:45:50.572973+00:00 Debian Oval Importer Fixing VCID-bdsg-x852-wfgn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:25:18.268467+00:00 Debian Oval Importer Fixing VCID-ahs6-mesc-yqhm https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:13:12.778636+00:00 Debian Oval Importer Fixing VCID-xyab-d3gr-zkdw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:00:56.619157+00:00 Debian Oval Importer Fixing VCID-1xdm-2dj5-jkc7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:49:05.505685+00:00 Debian Oval Importer Fixing VCID-2auw-wc6u-ekcs https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:15:45.836294+00:00 Debian Oval Importer Fixing VCID-kpcg-4av4-gka8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T17:36:22.519550+00:00 Debian Oval Importer Fixing VCID-tc8j-82se-qfbk https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T17:26:44.164570+00:00 Debian Oval Importer Affected by VCID-tubv-28uu-2uh8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:33:05.927097+00:00 Debian Oval Importer Fixing VCID-3bg1-rwze-kuhw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:07:03.286709+00:00 Debian Oval Importer Fixing VCID-x3k6-yrp9-9ud9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-12T00:06:20.238347+00:00 Debian Oval Importer Fixing VCID-zd6d-q8xx-zud6 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T23:54:16.262361+00:00 Debian Oval Importer Fixing VCID-kxcz-d7a4-77e8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T23:07:07.892931+00:00 Debian Oval Importer Fixing VCID-5ymr-xk84-8uh3 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T22:22:22.602095+00:00 Debian Oval Importer Fixing VCID-bdsg-x852-wfgn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T22:02:29.193341+00:00 Debian Oval Importer Fixing VCID-ahs6-mesc-yqhm https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T21:50:54.223199+00:00 Debian Oval Importer Fixing VCID-xyab-d3gr-zkdw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:41:13.157091+00:00 Debian Oval Importer Fixing VCID-1xdm-2dj5-jkc7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:33:41.738843+00:00 Debian Oval Importer Fixing VCID-2auw-wc6u-ekcs https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:01:10.291756+00:00 Debian Oval Importer Fixing VCID-kpcg-4av4-gka8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:22:37.351236+00:00 Debian Oval Importer Fixing VCID-tc8j-82se-qfbk https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:13:04.997560+00:00 Debian Oval Importer Affected by VCID-tubv-28uu-2uh8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T16:20:08.792378+00:00 Debian Oval Importer Fixing VCID-3bg1-rwze-kuhw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T15:54:34.570696+00:00 Debian Oval Importer Fixing VCID-x3k6-yrp9-9ud9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-08T23:37:33.042750+00:00 Debian Oval Importer Fixing VCID-zd6d-q8xx-zud6 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T23:26:08.257063+00:00 Debian Oval Importer Fixing VCID-kxcz-d7a4-77e8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T22:40:47.492912+00:00 Debian Oval Importer Fixing VCID-5ymr-xk84-8uh3 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:58:24.657553+00:00 Debian Oval Importer Fixing VCID-bdsg-x852-wfgn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:39:30.511094+00:00 Debian Oval Importer Fixing VCID-ahs6-mesc-yqhm https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:28:25.492471+00:00 Debian Oval Importer Fixing VCID-xyab-d3gr-zkdw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:21:10.625899+00:00 Debian Oval Importer Fixing VCID-1xdm-2dj5-jkc7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:18:53.624608+00:00 Debian Oval Importer Fixing VCID-2auw-wc6u-ekcs https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:47:47.359180+00:00 Debian Oval Importer Fixing VCID-kpcg-4av4-gka8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:10:56.300169+00:00 Debian Oval Importer Fixing VCID-tc8j-82se-qfbk https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:01:59.019904+00:00 Debian Oval Importer Affected by VCID-tubv-28uu-2uh8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T16:12:05.046856+00:00 Debian Oval Importer Fixing VCID-3bg1-rwze-kuhw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T15:47:50.728385+00:00 Debian Oval Importer Fixing VCID-x3k6-yrp9-9ud9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0