GNU Libextractor before version 1.7 is vulnerable to an infinite loop in the mpeg_extractor.c:EXTRACTOR_mpeg_extract_method() function. An attacker could exploit this to cause a denial of service via crafted file. Reference: http://lists.gnu.org/archive/html/bug-libextractor/2018-07/msg00000.html Upstream Bug: https://gnunet.org/bugs/view.php?id=5399 Upstream Patch: https://gnunet.org/git/libextractor.git/commit/?id=f033468cd36e2b8bf92d747fbd683b2ace8da394
Created libextractor tracking bugs for this issue: Affects: fedora-all [bug 1608164]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.