Lucene search
Veracode Vulnerability DatabaseVERACODE:35385HistoryMay 05, 2022 - 7:08 a.m.
Information Disclosure
2022-05-0507:08:03
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15
0.002 Low
EPSS
Percentile
52.1%
libsox.so is vulnerable to information disclosure. An attacker can leak and eventually cause an application crash through the global-buffer-overflow by providing a malicious file to the lsx_adpcm_init function of adpcms.h
References
www.openwall.com/lists/oss-security/2023/02/03/3
www.openwall.com/lists/oss-security/2023/02/04/2
www.openwall.com/lists/oss-security/2023/02/05/1
www.openwall.com/lists/oss-security/2023/02/06/1
bugzilla.redhat.com/show_bug.cgi?id=1980626
github.com/advisories/GHSA-6537-hg9g-m5mp
lists.debian.org/debian-lts-announce/2023/02/msg00009.html
Related
debiancve
debiancve
CVE-2021-3643
2022-05-02 19:15:08
cvelist
cvelist
CVE-2021-3643
2022-05-02 18:46:26
alpinelinux
alpinelinux
CVE-2021-3643
2022-05-02 19:15:08
nvd
nvd
CVE-2021-3643
2022-05-02 19:15:08
redhatcve
redhatcve
CVE-2021-3643
2021-08-12 16:53:12
ubuntucve
ubuntucve
CVE-2021-3643
2022-05-02 00:00:00
prion
prion
Buffer overflow
2022-05-02 19:15:00
cve
cve
CVE-2021-3643
2022-05-02 19:15:08
amazon
amazon
Medium: sox
2023-08-31 22:29:00
nessus
nessus
Amazon Linux 2 : sox (ALAS-2023-2231)
2023-09-08 00:00:00
Debian DSA-5356-1 : sox - security update
2023-02-22 00:00:00
osv
osv
sox - security update
2023-02-20 00:00:00
sox regression
2023-03-20 17:28:28
sox vulnerabilities
2023-03-02 11:42:50
debian
debian
[SECURITY] [DSA 5356-1] sox security update
2023-02-20 19:08:52
[SECURITY] [DLA 3315-1] sox security update
2023-02-10 06:10:28
openvas
openvas
Debian: Security Advisory (DSA-5356-1)
2023-02-23 00:00:00
Ubuntu: Security Advisory (USN-5904-2)
2023-03-21 00:00:00
Ubuntu: Security Advisory (USN-5904-1)
2023-03-03 00:00:00
ubuntu
ubuntu
SoX regression
2023-03-20 00:00:00
SoX vulnerabilities
2023-03-02 00:00:00
mageia
mageia
Updated sox packages fix security vulnerability
2023-02-27 23:27:16