Debian Security Advisory DSA 998-1 (libextractor) Network Vulnerability

Summary

The remote host is missing an update to libextractor announced via advisory DSA 998-1. Derek Noonburg has fixed several potential vulnerabilities in xpdf, which are also present in libextractor, a library to extract arbitrary meta-data from files. The old stable distribution (woody) does not contain libextractor packages.

Solution

For the stable distribution (sarge) these problems have been fixed in version 0.4.2-2sarge3. For the unstable distribution (sarge) these problems have been fixed in version 0.5.10-1. We recommend that you upgrade your libextractor package. https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20998-1

Severity

Classification

CVE CVE-2006-1244

CVSS	Base Score: 7.6 AV:N/AC:H/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Debian Security Advisory DSA 016-1 (wu-ftpd)
Debian Security Advisory DSA 040-1 (slrn)
Debian Security Advisory DSA 1072-1 (nagios)
Debian Security Advisory DSA 1037-1 (zgv)
Debian Security Advisory DSA 047-1 (various kernel packages)

Take action and discover your vulnerabilities