Astra Linux - уязвимость в sox

A issue was discovered in libsox.a within SoX 14.4.2. In sox-fmt.h, within the startread function, there is an integer overflow in the result of integer addition with a wrap around to 0 passed into the lsxcalloc macro that wraps around to malloc. When a NULL pointer is returned, it is used withou...

Amazon Linux 2 : sox, --advisory ALAS2-2023-2231 (ALAS-2023-2231)

The version of sox installed on the remote host is prior to 14.4.1-7. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2231 advisory. A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function lsxreadwbuf in formatsi.c file. The...

Buffer Overflow

sox is vulnerable to Buffer Overflow. This vulnerability can be exploited by an attacker to execute arbitrary code or cause a denial of service via the lsxreadbuf function at sox/src/formatsi.c...

CVE-2023-34432

A heap buffer overflow vulnerability was found in sox, in the lsxreadbuf function at sox/src/formatsi.c:98:16. This flaw can lead to a denial of service, code execution, or information disclosure...

DEBIAN-CVE-2023-34432

A heap buffer overflow vulnerability was found in sox, in the lsxreadbuf function at sox/src/formatsi.c:98:16. This flaw can lead to a denial of service, code execution, or information disclosure...

AZL-45252 CVE-2023-34432 affecting package sox 14.4.2.0-34

A heap buffer overflow vulnerability was found in sox, in the lsxreadbuf function at sox/src/formatsi.c:98:16. This flaw can lead to a denial of service, code execution, or information disclosure...

CVE-2023-34432 Heap-buffer-overflow in src/formats_i.c

A heap buffer overflow vulnerability was found in sox, in the lsxreadbuf function at sox/src/formatsi.c:98:16. This flaw can lead to a denial of service, code execution, or information disclosure...

CVE-2023-34432 Heap-buffer-overflow in src/formats_i.c

A heap buffer overflow vulnerability was found in sox, in the lsxreadbuf function at sox/src/formatsi.c:98:16. This flaw can lead to a denial of service, code execution, or information disclosure...

CVE-2023-34432

CVE-2023-34432 is a heap-based buffer overflow in SoX’s lsx_readbuf (formats_i.c:98:16). The vulnerability can lead to denial of service, and potentially code execution or information disclosure. Documents consistently reference SoX 14.4.2 and earlier as affected; OpenSUSE and Red Hat advisories ...

SUSE CVE-2023-34432

A heap buffer overflow vulnerability was found in sox, in the lsxreadbuf function at sox/src/formatsi.c:98:16. This flaw can lead to a denial of service, code execution, or information disclosure...

CVE-2023-34432

A heap buffer overflow vulnerability was found in sox, in the lsxreadbuf function at sox/src/formatsi.c:98:16. This flaw can lead to a denial of service, code execution, or information disclosure...

Denial Of Service (DoS)

sox is vulnerable to Denial Of Service DoS. The vulnerability exists due to the null pointer dereference in the lsxreadbuf function of formatsi.c when there is an integer overflow on the result of integer addition wraparound to 0 fed into the lsxcalloc macro that wraps malloc, allowing an attacke...

SUSE CVE-2019-13590

An issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h startread function, there is an integer overflow on the result of integer addition wraparound to 0 fed into the lsxcalloc macro that wraps malloc. When a NULL pointer is returned, it is used without a prior check that it is a valid...

AZL-43633 CVE-2019-13590 affecting package sox 14.4.2.0-34

An issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h startread function, there is an integer overflow on the result of integer addition wraparound to 0 fed into the lsxcalloc macro that wraps malloc. When a NULL pointer is returned, it is used without a prior check that it is a valid...

DEBIAN-CVE-2019-13590

An issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h startread function, there is an integer overflow on the result of integer addition wraparound to 0 fed into the lsxcalloc macro that wraps malloc. When a NULL pointer is returned, it is used without a prior check that it is a valid...

UBUNTU-CVE-2019-13590

An issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h startread function, there is an integer overflow on the result of integer addition wraparound to 0 fed into the lsxcalloc macro that wraps malloc. When a NULL pointer is returned, it is used without a prior check that it is a valid...

SoX Input Validation Error Vulnerability

SoX is a set of open source audio processing tools. The product supports playing, converting and recording audio in many formats. An input validation error vulnerability exists in the libsox.a file in SoX version 14.4.2. The vulnerability originates from a network system or product that does not...

CVE-2019-13590

An issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h startread function, there is an integer overflow on the result of integer addition wraparound to 0 fed into the lsxcalloc macro that wraps malloc. When a NULL pointer is returned, it is used without a prior check that it is a valid...