CVE-2017-15267
In GNU Libextractor 1.4, there is a NULL Pointer Dereference in flac_metadata in flac_extractor.c.
Date published : 2017-10-11
http://www.securityfocus.com/bid/101272
http://lists.gnu.org/archive/html/bug-libextractor/2017-10/msg00003.html