68 matches found
CVE-2021-33844
A floating point exception divide-by-zero issue was discovered in SoX in functon startread of wav.c file. An attacker with a crafted wav file, could cause an application to crash...
CVE-2021-33844
CVE-2021-33844 is a SoX vulnerability: a floating point divide-by-zero in wav.c:startread() can crash an application when processing a crafted WAV file. The connected advisories confirm this issue across multiple distributions and note vulnerable SoX versions. In Amazon Linux 2, the fix is delive...
CVE-2021-33844
A floating point exception divide-by-zero issue was discovered in SoX in functon startread of wav.c file. An attacker with a crafted wav file, could cause an application to crash...
SoX 数字错误漏洞
SoX is a set of open source audio processing tools. The product supports playing, converting and recording audio in multiple formats. A security vulnerability exists in SoX, which stems from a floating point exception in the startread function of its wav.c component that causes the application to...
SoX 缓冲区错误漏洞
SoX is a set of open source audio processing tools. It supports playing, converting, and recording audio in multiple formats. A security vulnerability exists in SoX, which stems from a heap buffer overflow in the startread function of its hcom.c component that causes the application to crash when...
CVE-2021-23172
A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function startread in hcom.c file. The vulnerability is exploitable with a crafted hcomn file, that could cause an application to crash...
Scientific Linux Security Update : sox on SL7.x x86_64 (20190806)
Security Fixes : - sox: NULL pointer dereference in startread function in xa.c CVE-2017-18189 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid128262; scriptversion"1.4"; scriptsetattributeattribute:"pluginmodificationdate",...
sox: NULL pointer dereference in startread function in xa.c
A NULL pointer dereference flaw found in the way SoX handled processing of AIFF files. An attacker could potentially use this flaw to crash the SoX application by tricking it into processing crafted AIFF files...
AZL-44592 CVE-2019-13590 affecting package sox 14.4.2.0-34
An issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h startread function, there is an integer overflow on the result of integer addition wraparound to 0 fed into the lsxcalloc macro that wraps malloc. When a NULL pointer is returned, it is used without a prior check that it is a valid...
AZL-43633 CVE-2019-13590 affecting package sox 14.4.2.0-34
An issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h startread function, there is an integer overflow on the result of integer addition wraparound to 0 fed into the lsxcalloc macro that wraps malloc. When a NULL pointer is returned, it is used without a prior check that it is a valid...
DEBIAN-CVE-2019-13590
An issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h startread function, there is an integer overflow on the result of integer addition wraparound to 0 fed into the lsxcalloc macro that wraps malloc. When a NULL pointer is returned, it is used without a prior check that it is a valid...
UBUNTU-CVE-2019-13590
An issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h startread function, there is an integer overflow on the result of integer addition wraparound to 0 fed into the lsxcalloc macro that wraps malloc. When a NULL pointer is returned, it is used without a prior check that it is a valid...
CVE-2017-18189
In the startread function in xa.c in Sound eXchange SoX through 14.4.2, a corrupt header specifying zero channels triggers an infinite loop with a resultant NULL pointer dereference, which may allow a remote attacker to cause a denial-of-service...
UBUNTU-CVE-2017-18189
In the startread function in xa.c in Sound eXchange SoX through 14.4.2, a corrupt header specifying zero channels triggers an infinite loop with a resultant NULL pointer dereference, which may allow a remote attacker to cause a denial-of-service...
Null pointer dereference
In the startread function in xa.c in Sound eXchange SoX through 14.4.2, a corrupt header specifying zero channels triggers an infinite loop with a resultant NULL pointer dereference, which may allow a remote attacker to cause a denial-of-service...
DEBIAN-CVE-2017-18189
In the startread function in xa.c in Sound eXchange SoX through 14.4.2, a corrupt header specifying zero channels triggers an infinite loop with a resultant NULL pointer dereference, which may allow a remote attacker to cause a denial-of-service...
CVE-2017-18189
In the startread function in xa.c in Sound eXchange SoX through 14.4.2, a corrupt header specifying zero channels triggers an infinite loop with a resultant NULL pointer dereference, which may allow a remote attacker to cause a denial-of-service...
CVE-2017-18189
In the startread function in xa.c in Sound eXchange SoX through 14.4.2, a corrupt header specifying zero channels triggers an infinite loop with a resultant NULL pointer dereference, which may allow a remote attacker to cause a denial-of-service...
CVE-2017-18189
SoX CVE-2017-18189 is a NULL pointer dereference in the startread function (xa.c) that occurs when a crafted header specifies zero channels. The issue can cause an infinite loop and a subsequent crash/denial of service. Affected product: SoX up to version 14.4.2. The vulnerability is exploitable ...
CVE-2017-18189
In the startread function in xa.c in Sound eXchange SoX through 14.4.2, a corrupt header specifying zero channels triggers an infinite loop with a resultant NULL pointer dereference, which may allow a remote attacker to cause a denial-of-service...