Debian Security Advisory DSA 998-1 (libextractor) Network Vulnerability

Summary

The remote host is missing an update to libextractor announced via advisory DSA 998-1. Derek Noonburg has fixed several potential vulnerabilities in xpdf, which are also present in libextractor, a library to extract arbitrary meta-data from files. The old stable distribution (woody) does not contain libextractor packages.

Solution

For the stable distribution (sarge) these problems have been fixed in version 0.4.2-2sarge3. For the unstable distribution (sarge) these problems have been fixed in version 0.5.10-1. We recommend that you upgrade your libextractor package. https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20998-1

Severity

Classification

CVE CVE-2006-1244

CVSS	Base Score: 7.6 AV:N/AC:H/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Debian Security Advisory DSA 1049-1 (ethereal)
Debian Security Advisory DSA 1018-2 (kernel-source-2.4.27)
Debian Security Advisory DSA 1070-1 (kernel-source-2.4.19,kernel-image-sparc-2.4,kernel-patch-2.4.19-mips)
Debian Security Advisory DSA 1033-1 (horde3)
Debian Security Advisory DSA 1029-1 (libphp-adodb)

Take action and discover your vulnerabilities