16 matches found
Advisory ROSA-SA-2025-2668
software: sox 14.4.2 OS: ROSA-CHROME packageevrstring: sox-14.4.2-6 CVE-ID: CVE-2022-31650 BDU-ID: 2023-01722 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the lsxaiffstartwrite function of the aiff.c component of the Sound eXchange audio editor is related to insufficient comparison. Exploitation ...
openSUSE: Security Advisory for sox (openSUSE-SU-2023:0329-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OPENSUSE-SU-2023:0329-1 Security update for sox
This update for sox fixes the following issues: - Apply various fix patches taken from Debian package; it fixes also other entries CVE-2022-31650 boo1212060 CVE-2023-34318 boo1212062 CVE-2023-34432 boo1212063 - Fix floating point exception in src/voc.c CVE-2023-32627 boo1212061...
OPENSUSE-SU-2023:0328-1 Security update for sox
This update for sox fixes the following issues: - Apply various fix patches taken from Debian package; it fixes also other entries CVE-2022-31650 boo1212060 CVE-2023-34318 boo1212062 CVE-2023-34432 boo1212063 - Fix floating point exception in src/voc.c CVE-2023-32627 boo1212061...
Medium: sox
Issue Overview: A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function lsxreadwbuf in formatsi.c file. The vulnerability is exploitable with a crafted file, that could cause an application to crash. CVE-2021-23159 A vulnerability was found in SoX, where a...
Mageia: Security Advisory (MGASA-2023-0059)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-5904-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-5904-1: SoX vulnerabilities
Helmut Grohne discovered that SoX incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 ES...
MGASA-2023-0059 Updated sox packages fix security vulnerability
CVE-2019-13590: sox-fmt validation CVE-2021-3643 and CVE-2021-23210: voc validation CVE-2021-23159 and CVE-2021-23172: hcom validation CVE-2021-33844: wav validation CVE-2021-40426: sphere validation CVE-2022-31650: aiff validation CVE-2022-31651: reject implausible rate...
Updated sox packages fix security vulnerability
CVE-2019-13590: sox-fmt validation CVE-2021-3643 and CVE-2021-23210: voc validation CVE-2021-23159 and CVE-2021-23172: hcom validation CVE-2021-33844: wav validation CVE-2021-40426: sphere validation CVE-2022-31650: aiff validation CVE-2022-31651: reject implausible rate...
[SECURITY] [DSA 5356-1] sox security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5356-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 20, 2023 https://www.debian.org/security/faq -...
Debian: Security Advisory (DLA-3315-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2022-31650
In SoX 14.4.2, there is a floating-point exception in lsxaiffstartwrite in aiff.c in libsox.a...
AZL-43666 CVE-2022-31650 affecting package sox 14.4.2.0-34
In SoX 14.4.2, there is a floating-point exception in lsxaiffstartwrite in aiff.c in libsox.a...
UBUNTU-CVE-2022-31650
In SoX 14.4.2, there is a floating-point exception in lsxaiffstartwrite in aiff.c in libsox.a...
CVE-2022-31650
CVE-2022-31650 is a vulnerability in SoX 14.4.2 where a floating-point exception occurs in lsx_aiffstartwrite (aiff.c) of libsox.a. Multiple trusted sources (OpenSUSE/OpenSUSE advisory, Amazon Linux 2 ALAS advisory, Astra Linux bulletin, etc.) reference this exact flaw and note that it can lead t...