Lucene search
+L

14 matches found

nessus
nessus
added 2024/05/11 12:0 a.m.18 views

RHEL 5 : sox (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - sox: buffer overflow read vulnerability CVE-2021-3643 - The startread function in wav.c in Sound eXchange...

6.8AI score0.07401EPSS
Exploits13References11
openvas
openvas
added 2024/03/04 12:0 a.m.34 views

openSUSE: Security Advisory for sox (openSUSE-SU-2023:0329-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.3AI score0.02211EPSS
Exploits7References2
amazon
amazon
added 2023/09/05 12:0 a.m.37 views

Medium: sox

Issue Overview: A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function lsxreadwbuf in formatsi.c file. The vulnerability is exploitable with a crafted file, that could cause an application to crash. CVE-2021-23159 A vulnerability was found in SoX, where a...

9.1CVSS7.4AI score0.01489EPSS
Exploits5
openvas
openvas
added 2023/03/28 12:0 a.m.24 views

Mageia: Security Advisory (MGASA-2023-0059)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.7AI score0.02211EPSS
Exploits8References5
openvas
openvas
added 2023/03/03 12:0 a.m.36 views

Ubuntu: Security Advisory (USN-5904-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6AI score0.02211EPSS
Exploits8References2
ubuntu
ubuntu
added 2023/03/02 11:42 a.m.83 views

USN-5904-1: SoX vulnerabilities

Helmut Grohne discovered that SoX incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 ES...

10CVSS7.1AI score0.02211EPSS
Exploits8
osv
osv
added 2023/02/27 8:27 p.m.14 views

MGASA-2023-0059 Updated sox packages fix security vulnerability

CVE-2019-13590: sox-fmt validation CVE-2021-3643 and CVE-2021-23210: voc validation CVE-2021-23159 and CVE-2021-23172: hcom validation CVE-2021-33844: wav validation CVE-2021-40426: sphere validation CVE-2022-31650: aiff validation CVE-2022-31651: reject implausible rate...

10CVSS6.2AI score0.02211EPSS
Exploits8References4
mageia
mageia
added 2023/02/27 8:27 p.m.116 views

Updated sox packages fix security vulnerability

CVE-2019-13590: sox-fmt validation CVE-2021-3643 and CVE-2021-23210: voc validation CVE-2021-23159 and CVE-2021-23172: hcom validation CVE-2021-33844: wav validation CVE-2021-40426: sphere validation CVE-2022-31650: aiff validation CVE-2022-31651: reject implausible rate...

10CVSS6.4AI score0.02211EPSS
Exploits8References3
debian
debian
added 2023/02/20 7:8 p.m.58 views

[SECURITY] [DSA 5356-1] sox security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5356-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 20, 2023 https://www.debian.org/security/faq -...

10CVSS7.2AI score0.02211EPSS
Exploits7
openvas
openvas
added 2023/02/11 12:0 a.m.19 views

Debian: Security Advisory (DLA-3315-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.8AI score0.02211EPSS
Exploits8References4
circl
circl
added 2022/05/02 10:28 p.m.3 views

CVE-2021-3643

creationtimestamp| type| source ---|---|--- 2022-05-02 22:28:17+00:00| seen| https://t.me/cibsecurity/41764...

9.1CVSS7.3AI score0.01489EPSS
Exploits0References1
osv
osv
added 2022/05/02 7:15 p.m.7 views

CVE-2021-3643

A flaw was found in sox 14.4.1. The lsxadpcminit function within libsox leads to a global-buffer-overflow. This flaw allows an attacker to input a malicious file, leading to the disclosure of sensitive information...

9.1CVSS8.8AI score
Exploits0References1
ubuntucve
ubuntucve
added 2022/05/02 7:15 p.m.28 views

CVE-2021-3643

A flaw was found in sox 14.4.1. The lsxadpcminit function within libsox leads to a global-buffer-overflow. This flaw allows an attacker to input a malicious file, leading to the disclosure of sensitive information...

9.1CVSS7.1AI score0.01489EPSS
Exploits0References3
cve
cve
added 2022/05/02 6:46 p.m.155 views

CVE-2021-3643

CVE-2021-3643 details (SoX): A flaw in SoX 14.4.1’s libsox, specifically the lsx_adpcm_init function, causes a global-buffer-overflow that can disclose sensitive information when processing a crafted file. Public advisories (openSUSE, Amazon Linux 2 ALAS, Red Hat OSS/Nessus mappings) confirm this...

9.1CVSS8.6AI score0.01489EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder