VDB

GCVE-110-MAGEIA-2018-43

GCVE-110-MAGEIA-2018-43
Advisory Published
Vulnetix · Advisory published January 3, 2018
GNU Libextractor 1.6 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted GIF, IT (Impulse Tracker), NSFE, S3M (Scream Tracker 3), SID, or XM (eXtended Module) file, as demonstrated by the EXTRACTOR_xm_extract_method function in plugins/xm_extractor.c (CVE-2017-17440).

Affected Products

VendorProductVersionsPlatforms
Mageialibextractor0 (affected), 1.6-1.1.mga5 (unaffected), 0 (affected), 1.6-1.1.mga5 (unaffected)
Mageialibdrm0 (affected), 2.4.90-1.mga6 (unaffected)
Mageialibextractor0 (affected), 1.6-1.1.mga6 (unaffected), 1.6-1.1.mga6 (unaffected), 0 (affected)

Browse GCVE Records

72,921 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›