VYPR

Libgsf

by GNOME Foundation

Source repositories

CVEs (3)

  • CVE-2016-9888MedDec 8, 2016
    risk 0.36cvss 5.5epss 0.01

    An error within the "tar_directory_for_file()" function (gsf-infile-tar.c) in GNOME Structured File Library before 1.14.41 can be exploited to trigger a Null pointer dereference and subsequently cause a crash via a crafted TAR file.

  • CVE-2024-36474Oct 3, 2024
    risk 0.00cvss epss 0.00

    An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library (libgsf) version v1.14.52. A specially crafted file can result in an integer overflow when processing the directory from the file that…

  • CVE-2006-4514Nov 30, 2006
    risk 0.00cvss epss 0.04

    Heap-based buffer overflow in the ole_info_read_metabat function in Gnome Structured File library (libgsf) 1.14.0, and other versions before 1.14.2, allows context-dependent attackers to execute arbitrary code via a large num_metabat value in an OLE document, which causes the…