Leon Zhao

**Name of the Vulnerable Software and Affected Versions** GNU Libextractor version 1.6 **Description** The issue allows remote attackers to cause a denial of service, resulting in a NULL pointer dereference and application crash, via a crafted file of specific formats, including GIF, IT, NSFE, S3M, SID, or XM. This is demonstrated by the `EXTRACTOR xm extract method` function in `plugins/xm extractor.c`. **Recommendations** For GNU Libextractor version 1.6, consider avoiding the use of the `EXTRACTOR xm extract method` function in `plugins/xm extractor.c` until a patch is available. Restrict access to file formats that can trigger the issue, such as GIF, IT, NSFE, S3M, SID, or XM files, to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** GNU Libextractor version 1.4 **Description** The issue is related to a NULL Pointer Dereference in the `EXTRACTOR nsf extract method` function, located in the `plugins/nsf extractor.c` file. **Recommendations** For GNU Libextractor version 1.4, consider avoiding the use of the `EXTRACTOR nsf extract method` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** GNU Libextractor version 1.4 **Description** The issue is related to a heap-based buffer overflow in the `EXTRACTOR png extract method` function, specifically in the processing of TXt and the use of `stndup`. **Recommendations** For GNU Libextractor version 1.4, consider disabling the `EXTRACTOR png extract method` function in plugins/png extractor.c until a patch is available.

**Name of the Vulnerable Software and Affected Versions** GNU Libextractor version 1.4 **Description** The issue is caused by an integer signedness error for the chunk size in the EXTRACTOR nsfe extract method function, located in plugins/nsfe extractor.c. This error can lead to an infinite loop when a crafted size is encountered. **Recommendations** For GNU Libextractor version 1.4, consider applying a patch to fix the integer signedness error in the EXTRACTOR nsfe extract method function to prevent infinite loops for crafted chunk sizes.

**Name of the Vulnerable Software and Affected Versions** GNU Libextractor version 1.4 **Description** The issue is related to an out-of-bounds read in the `EXTRACTOR dvi extract method` function, located in the `plugins/dvi extractor.c` file. **Recommendations** For GNU Libextractor version 1.4, consider restricting access to the `EXTRACTOR dvi extract method` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** GNU Libextractor version 1.4 **Description** The issue is related to a Divide-By-Zero error in the EXTRACTOR wav extract method function, located in the wav extractor.c file. This error occurs when a zero sample rate is encountered. **Recommendations** For GNU Libextractor version 1.4, consider applying a patch or fix to resolve the Divide-By-Zero error in the EXTRACTOR wav extract method function. As a temporary workaround, avoid using the wav extractor.c module with zero sample rates until a patch is available.

**Name of the Vulnerable Software and Affected Versions** GNU Libextractor version 1.4 **Description** The issue is related to a NULL Pointer Dereference in the `flac metadata` function within the `flac extractor.c` file. **Recommendations** For GNU Libextractor version 1.4, consider updating to a newer version that contains a fix for this issue, if available. As a temporary workaround, restrict access to the `flac extractor.c` file or the `flac metadata` function to minimize the risk of exploitation.