Search for packages
| purl | pkg:pypi/extractor@0.5 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-ysee-ywmb-zkep
Aliases: CVE-2006-2458 GHSA-f836-7jqw-3684 PYSEC-2006-4 |
Multiple heap-based buffer overflows in Libextractor 0.5.13 and earlier allow remote attackers to execute arbitrary code via (1) the asf_read_header function in the ASF plugin (plugins/asfextractor.c), and (2) the parse_trak_atom function in the QT plugin (plugins/qtextractor.c). | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T21:46:00.944133+00:00 | GitLab Importer | Affected by | VCID-ysee-ywmb-zkep | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/extractor/CVE-2006-2458.yml | 38.4.0 |
| 2026-04-11T23:01:46.343068+00:00 | GitLab Importer | Affected by | VCID-ysee-ywmb-zkep | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/extractor/CVE-2006-2458.yml | 38.3.0 |
| 2026-04-02T23:10:14.869525+00:00 | GitLab Importer | Affected by | VCID-ysee-ywmb-zkep | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/extractor/CVE-2006-2458.yml | 38.1.0 |
| 2026-04-01T16:00:27.732548+00:00 | GHSA Importer | Affected by | VCID-ysee-ywmb-zkep | https://github.com/advisories/GHSA-f836-7jqw-3684 | 38.0.0 |
| 2026-04-01T12:49:55.699935+00:00 | GitLab Importer | Affected by | VCID-ysee-ywmb-zkep | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/extractor/CVE-2006-2458.yml | 38.0.0 |