libsox.so is vulnerable to denial of service. The vulnerability exists due to the floating point exception (divide-by-zero) in the read_samples
function of voc.c
, allowing an attacker to crash the application through the maliciously crafted file.
www.openwall.com/lists/oss-security/2023/02/03/3
access.redhat.com/security/cve/CVE-2021-23210
bugzilla.redhat.com/show_bug.cgi?id=1975670
github.com/advisories/GHSA-3mv4-6x34-qw3c
lists.debian.org/debian-lts-announce/2023/02/msg00009.html
security.archlinux.org/CVE-2021-23210
sourceforge.net/p/sox/bugs/351/