VulnerableCode Package Details - pkg:pypi/extractor@0.5

Search for packages

Vulnerability	Summary	Fixed by
VCID-qjga-kr3t-aaaf Aliases: CVE-2006-2458 GHSA-f836-7jqw-3684 PYSEC-2006-4	Multiple heap-based buffer overflows in Libextractor 0.5.13 and earlier allow remote attackers to execute arbitrary code via (1) the asf_read_header function in the ASF plugin (plugins/asfextractor.c), and (2) the parse_trak_atom function in the QT plugin (plugins/qtextractor.c).	There are no reported fixed by versions.

Vulnerability

Summary

Fixed by

VCID-qjga-kr3t-aaaf
Aliases:
CVE-2006-2458
GHSA-f836-7jqw-3684
PYSEC-2006-4

Multiple heap-based buffer overflows in Libextractor 0.5.13 and earlier allow remote attackers to execute arbitrary code via (1) the asf_read_header function in the ASF plugin (plugins/asfextractor.c), and (2) the parse_trak_atom function in the QT plugin (plugins/qtextractor.c).

There are no reported fixed by versions.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-20T15:37:56.892564+00:00	GitLab Importer	Affected by	VCID-qjga-kr3t-aaaf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/extractor/CVE-2006-2458.yml	36.1.3
2025-06-03T22:18:14.184315+00:00	GitLab Importer	Affected by	VCID-qjga-kr3t-aaaf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/extractor/CVE-2006-2458.yml	36.1.0
2025-06-02T22:06:46.961541+00:00	GitLab Importer	Affected by	VCID-qjga-kr3t-aaaf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/extractor/CVE-2006-2458.yml	36.1.2
2025-04-03T19:33:01.807253+00:00	GitLab Importer	Affected by	VCID-qjga-kr3t-aaaf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/extractor/CVE-2006-2458.yml	36.0.0
2025-02-18T01:28:28.619794+00:00	GitLab Importer	Affected by	VCID-qjga-kr3t-aaaf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/extractor/CVE-2006-2458.yml	35.1.0
2024-11-24T13:30:01.868030+00:00	GitLab Importer	Affected by	VCID-qjga-kr3t-aaaf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/extractor/CVE-2006-2458.yml	35.0.0
2024-11-23T04:30:32.758979+00:00	GHSA Importer	Affected by	VCID-qjga-kr3t-aaaf	https://github.com/advisories/GHSA-f836-7jqw-3684	35.0.0