Lucene search
K

18 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2017-15372

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a stack-based buffer overflow in the lsxmsadpcmblockexpandi function of adpcm.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of...

5.5CVSS6.3AI score0.01649EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.18 views

RHEL 5 : sox (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - sox: buffer overflow read vulnerability CVE-2021-3643 - The startread function in wav.c in Sound eXchange...

6.8AI score0.07401EPSS
Exploits13References11
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.25 views

Mageia: Security Advisory (MGASA-2018-0211)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6AI score0.07401EPSS
Exploits8References3
OpenVAS
OpenVAS
added 2021/05/03 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for sox (EulerOS-SA-2021-1850)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.2AI score0.07401EPSS
Exploits11References2
Tenable Nessus
Tenable Nessus
added 2021/02/04 12:0 a.m.30 views

EulerOS 2.0 SP5 : sox (EulerOS-SA-2021-1231)

According to the versions of the sox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - SoX Sound eXchange is a sound file format converter SoX can convert between many different digitized sound formats and perform simple sound...

5.5CVSS6.3AI score0.07401EPSS
Exploits9References8
Tenable Nessus
Tenable Nessus
added 2019/03/01 12:0 a.m.39 views

Debian DLA-1695-1 : sox security update

Multiple vulnerabilities have been discovered in SoX Sound eXchange, a sound processing program : CVE-2017-15370 The ImaAdpcmReadBlock function src/wav.c is affected by a heap buffer overflow. This vulnerability might be leveraged by remote attackers using a crafted WAV file to cause denial of...

7.5CVSS6.4AI score0.05151EPSS
Exploits3References6
Debian
Debian
added 2019/02/28 12:49 p.m.56 views

[SECURITY] [DLA 1695-1] sox security update

Package : sox Version : 14.4.1-5+deb8u2 CVE ID : CVE-2017-15370 CVE-2017-15372 CVE-2017-15642 CVE-2017-18189 Debian Bug : 878808, 878810, 882144, 881121 Multiple vulnerabilities have been discovered in SoX Sound eXchange, a sound processing program: CVE-2017-15370 The ImaAdpcmReadBlock function...

7.5CVSS6.7AI score0.05151EPSS
Exploits3
OpenVAS
OpenVAS
added 2019/02/27 12:0 a.m.28 views

Debian: Security Advisory (DLA-1695-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6AI score0.05151EPSS
Exploits4References3
OpenVAS
OpenVAS
added 2018/08/15 12:0 a.m.50 views

Fedora Update for sox FEDORA-2018-f7a1334c68

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.2AI score0.07401EPSS
Exploits9References2
Mageia
Mageia
added 2018/04/30 7:8 p.m.40 views

Updated sox packages fix security vulnerabilities

This update for sox fixes the following security issues: CVE-2017-11332: Fixed the startread function in wav.c, which allowed remote attackers to cause a DoS divide-by-zero via a crafted wav file. CVE-2017-11358: Fixed the readsamples function in hcom.c, which allowed remote attackers to cause a...

7.5CVSS4AI score0.07401EPSS
Exploits8References1
Tenable Nessus
Tenable Nessus
added 2018/02/21 12:0 a.m.32 views

openSUSE Security Update : sox (openSUSE-2018-185)

This update for sox fixes the following issues : - CVE-2017-11332: Fixed the startread function in wav.c, which allowed remote attackers to cause a DoS divide-by-zero via a crafted wav file. boo1081140 - CVE-2017-11358: Fixed the readsamples function in hcom.c, which allowed remote attackers to...

7.5CVSS6.3AI score0.07401EPSS
Exploits10References16
Debian
Debian
added 2017/11/30 11:2 p.m.30 views

[SECURITY] [DLA 1197-1] sox security update

Package : sox Version : 14.4.0-3+deb7u2 CVE ID : CVE-2017-11332 CVE-2017-11358 CVE-2017-11359 CVE-2017-15370 CVE-2017-15371 CVE-2017-15372 CVE-2017-15642 Debian Bug : 870328 878810 878809 878808 882236 882144 Various security vulnerabilities were discovered in sox, a command line utility to conve...

5.5CVSS6.9AI score0.07401EPSS
Exploits9
RedhatCVE
RedhatCVE
added 2017/11/08 1:20 p.m.28 views

CVE-2017-15372

There is a stack-based buffer overflow in the lsxmsadpcmblockexpandi function of adpcm.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file...

5.5CVSS5.5AI score0.01649EPSS
Exploits1References1
OSV
OSV
added 2017/10/16 4:29 a.m.5 views

CVE-2017-15372

There is a stack-based buffer overflow in the lsxmsadpcmblockexpandi function of adpcm.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file...

5.5CVSS6.4AI score
Exploits0References4
NVD
NVD
added 2017/10/16 4:29 a.m.17 views

CVE-2017-15372

There is a stack-based buffer overflow in the lsxmsadpcmblockexpandi function of adpcm.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file...

5.5CVSS5.5AI score0.01649EPSS
Exploits1References4
OSV
OSV
added 2017/10/16 4:29 a.m.3 views

UBUNTU-CVE-2017-15372

There is a stack-based buffer overflow in the lsxmsadpcmblockexpandi function of adpcm.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file...

5.5CVSS6.7AI score0.01649EPSS
Exploits1References3
AlpineLinux
AlpineLinux
added 2017/10/16 4:0 a.m.37 views

CVE-2017-15372

There is a stack-based buffer overflow in the lsxmsadpcmblockexpandi function of adpcm.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file...

5.5CVSS5.9AI score0.01649EPSS
Exploits1
CVE
CVE
added 2017/10/16 4:0 a.m.103 views

CVE-2017-15372

CVE-2017-15372 affects SoX 14.4.2: a stack-based buffer overflow in lsx_ms_adpcm_block_expand_i() in adpcm.c can be triggered by crafted input to cause a denial of service during audio file conversion. Public documents enumerate this and related SoX CVEs across RHEL5–7 as unpatched/vulnerable in ...

5.5CVSS5.6AI score0.01649EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder