Lucene search
+L

13 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.18 views

RHEL 5 : sox (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - sox: buffer overflow read vulnerability CVE-2021-3643 - The startread function in wav.c in Sound eXchange...

6.8AI score0.07401EPSS
Exploits13References11
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.34 views

openSUSE: Security Advisory for sox (openSUSE-SU-2023:0329-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.3AI score0.02211EPSS
Exploits7References2
UbuntuCve
UbuntuCve
added 2023/07/10 6:15 p.m.35 views

CVE-2023-34318

A heap buffer overflow vulnerability was found in sox, in the startread function at sox/src/hcom.c:160:41. This flaw can lead to a denial of service, code execution, or information disclosure...

7.8CVSS7.3AI score0.00275EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.24 views

Mageia: Security Advisory (MGASA-2023-0059)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.7AI score0.02211EPSS
Exploits8References5
OpenVAS
OpenVAS
added 2023/03/03 12:0 a.m.36 views

Ubuntu: Security Advisory (USN-5904-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6AI score0.02211EPSS
Exploits8References2
Ubuntu
Ubuntu
added 2023/03/02 11:42 a.m.83 views

USN-5904-1: SoX vulnerabilities

Helmut Grohne discovered that SoX incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 ES...

10CVSS7.1AI score0.02211EPSS
Exploits8
OSV
OSV
added 2023/02/27 8:27 p.m.14 views

MGASA-2023-0059 Updated sox packages fix security vulnerability

CVE-2019-13590: sox-fmt validation CVE-2021-3643 and CVE-2021-23210: voc validation CVE-2021-23159 and CVE-2021-23172: hcom validation CVE-2021-33844: wav validation CVE-2021-40426: sphere validation CVE-2022-31650: aiff validation CVE-2022-31651: reject implausible rate...

10CVSS6.2AI score0.02211EPSS
Exploits8References4
Mageia
Mageia
added 2023/02/27 8:27 p.m.116 views

Updated sox packages fix security vulnerability

CVE-2019-13590: sox-fmt validation CVE-2021-3643 and CVE-2021-23210: voc validation CVE-2021-23159 and CVE-2021-23172: hcom validation CVE-2021-33844: wav validation CVE-2021-40426: sphere validation CVE-2022-31650: aiff validation CVE-2022-31651: reject implausible rate...

10CVSS6.4AI score0.02211EPSS
Exploits8References3
Debian
Debian
added 2023/02/20 7:8 p.m.58 views

[SECURITY] [DSA 5356-1] sox security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5356-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 20, 2023 https://www.debian.org/security/faq -...

10CVSS7.2AI score0.02211EPSS
Exploits7
OpenVAS
OpenVAS
added 2023/02/11 12:0 a.m.19 views

Debian: Security Advisory (DLA-3315-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.8AI score0.02211EPSS
Exploits8References4
OSV
OSV
added 2022/08/25 8:15 p.m.10 views

CVE-2021-23159

A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function lsxreadwbuf in formatsi.c file. The vulnerability is exploitable with a crafted file, that could cause an application to crash...

5.5CVSS8.9AI score0.00457EPSS
Exploits1References4
OSV
OSV
added 2022/08/25 8:15 p.m.2 views

DEBIAN-CVE-2021-23159

A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function lsxreadwbuf in formatsi.c file. The vulnerability is exploitable with a crafted file, that could cause an application to crash...

5.5CVSS6.9AI score0.00457EPSS
Exploits1References1
CVE
CVE
added 2022/08/25 7:35 p.m.127 views

CVE-2021-23159

CVE-2021-23159 is a SoX heap-buffer-overflow in formats_i.c:lsx_read_w_buf() that can be triggered by a crafted file, causing an application crash. The connected advisories (Red Hat, openSUSE, Amazon Linux 2 ALAS, Ubuntu USN) confirm affected SoX versions and list related CVEs; some advisories al...

5.5CVSS6.6AI score0.00457EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder