VYPR
High severity7.5NVD Advisory· Published Oct 18, 2017· Updated Jun 17, 2026

CVE-2017-15602

CVE-2017-15602

Description

In GNU Libextractor 1.4, there is an integer signedness error for the chunk size in the EXTRACTOR_nsfe_extract_method function in plugins/nsfe_extractor.c, leading to an infinite loop for a crafted size.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • GNU/Libextractor2 versions
    cpe:2.3:a:gnu:libextractor:1.4:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:gnu:libextractor:1.4:*:*:*:*:*:*:*
    • (no CPE)range: <=1.4

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.