There is a heap-based buffer overflow in the ImaExpandS function of ima_rw.c in Sound eXchange (SoX) 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file.

...

Denial Of Service (DoS)

Sound eXchange is vulnerable to denial of service attacks. A heap-based buffer overflow in the ImaExpandS function of imarw.c could lead to a denial of service attack during conversion of an audio file...

openSUSE Security Update : sox (openSUSE-2018-185)

This update for sox fixes the following issues : - CVE-2017-11332: Fixed the startread function in wav.c, which allowed remote attackers to cause a DoS divide-by-zero via a crafted wav file. boo1081140 - CVE-2017-11358: Fixed the readsamples function in hcom.c, which allowed remote attackers to...

CVE-2017-15370

There is a heap-based buffer overflow in the ImaExpandS function of imarw.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file...

Sound eXchange Buffer Overflow Vulnerability

Sound eXchange SoX is a set of open source audio processing tools. The tool supports playback, conversion and recording of multiple audio format files. A buffer overflow vulnerability exists in the 'ImaExpandS' function of the imarw.c file in SoX version 14.4.2. An attacker can exploit this...

CVE-2017-15370

There is a heap-based buffer overflow in the ImaExpandS function of imarw.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file...

UBUNTU-CVE-2017-15370

There is a heap-based buffer overflow in the ImaExpandS function of imarw.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file...

CVE-2017-15370

There is a heap-based buffer overflow in the ImaExpandS function of imarw.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file...

DEBIAN-CVE-2017-15370

There is a heap-based buffer overflow in the ImaExpandS function of imarw.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file...

AZL-43930 CVE-2017-15370 affecting package sox for versions less than 14.4.2.0-33

There is a heap-based buffer overflow in the ImaExpandS function of imarw.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file...

AZL-44898 CVE-2017-15370 affecting package sox for versions less than 14.4.2.0-33

There is a heap-based buffer overflow in the ImaExpandS function of imarw.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file...

CVE-2017-15370

There is a heap-based buffer overflow in the ImaExpandS function of imarw.c in Sound eXchange SoX 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file...