Lucene search
Veracode Vulnerability DatabaseVERACODE:28245HistoryDec 06, 2020 - 3:37 a.m.
Use-after-free
2020-12-0603:37:30
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.002 Low
EPSS
Percentile
52.9%
sox is vulnerable to use-after-free. The vulnerability exists in lsx_aiffstartread in aiff.c, allowing a malicious user to exploit this flaw by supplying a malformed AIFF file which may lead to denial of service (DoS) during the conversion of an audio file.
| CPE | Name | Operator | Version |
|---|---|---|---|
| sox:sid | eq | 14.4.2+git20190427-2 | |
| sox:buster | eq | 14.4.2+git20190427-1 | |
| sox:bullseye | eq | 14.4.2+git20190427-2 |
Related
redhatcve
redhatcve
CVE-2017-15642
2017-11-08 13:20:20
ubuntucve
ubuntucve
CVE-2017-15642
2017-10-19 00:00:00
debiancve
debiancve
CVE-2017-15642
2017-10-19 19:29:00
prion
prion
Design/Logic Flaw
2017-10-19 19:29:00
cvelist
cvelist
CVE-2017-15642
2017-10-19 19:00:00
cve
cve
CVE-2017-15642
2017-10-19 19:29:00
nvd
nvd
CVE-2017-15642
2017-10-19 19:29:00
openvas
openvas
Fedora Update for sox FEDORA-2018-aa1bf1711d
2018-02-21 00:00:00
Fedora Update for sox FEDORA-2018-ec93095a73
2018-02-15 00:00:00
Debian: Security Advisory (DLA-1695-1)
2019-02-27 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: sox-14.4.2.0-16.fc27
2018-02-14 17:33:39
[SECURITY] Fedora 26 Update: sox-14.4.2.0-17.fc26
2018-02-20 16:40:14
nessus
nessus
Fedora 27 : sox (2018-ec93095a73)
2018-02-15 00:00:00
Fedora 26 : sox (2018-aa1bf1711d)
2018-02-21 00:00:00
Debian DLA-1695-1 : sox security update
2019-03-01 00:00:00
debian
debian
[SECURITY] [DLA 1695-1] sox security update
2019-02-28 12:49:02
[SECURITY] [DLA 1197-1] sox security update
2017-11-30 23:02:33
osv
osv
sox - security update
2019-02-28 00:00:00
sox - security update
2017-11-30 00:00:00
mageia
mageia
Updated sox packages fix security vulnerabilities
2018-04-30 22:08:07
gentoo
gentoo
SoX: Multiple vulnerabilities
2018-10-06 00:00:00