Unity Linux 20.1050e / 20.1070e Security Update: sox (UTSA-2026-016769)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016769 advisory. An issue was discovered in SoX 14.4.2. One of the arguments to bitrv2 in fft4g.c is not guarded, such that it can lead to write access outside of the statically...

Buffer Overflow

sox:eoan is vulnerable to buffer overflow. One of the arguments to bitrv2 in fft4g.c is not guarded, such that it can lead to write access outside of the statically declared array, aka a stack-based buffer overflow...

CVE-2019-8356

An issue was discovered in SoX 14.4.2. One of the arguments to bitrv2 in fft4g.c is not guarded, such that it can lead to write access outside of the statically declared array, aka a stack-based buffer overflow...

DEBIAN-CVE-2019-8356

An issue was discovered in SoX 14.4.2. One of the arguments to bitrv2 in fft4g.c is not guarded, such that it can lead to write access outside of the statically declared array, aka a stack-based buffer overflow...

CVE-2019-8356

SoX 14.4.2 contains a stack-based buffer overflow in fft4g.c: an unguarded argument to bitrv2 can write outside the statically declared array (CVE-2019-8356). Connected sources (EulerOS/NESSUS entries) confirm this exact issue for SoX 14.4.2 and list it among related SoX vulnerabilities, without ...

PT-2019-2905 · Sox +2 · Sox +2

Name of the Vulnerable Software and Affected Versions: SoX version 14.4.2 Description: The issue is related to the bitrv2 function in the fft4g.c file of the SoX audio editor, which is associated with a buffer overflow in memory. This can be exploited by a remote attacker to cause a denial of...