CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
25.6%
libsox.so is vulnerable to Denial Of Service (DoS). The vulnerability exists in read_samples
function at voc.c
due to a floating point exception which allows an attacker to cause an application crash.
access.redhat.com/security/cve/CVE-2023-32627
bugzilla.redhat.com/show_bug.cgi?id=2212282
github.com/advisories/GHSA-4jrq-9cvx-fwjx
github.com/dmkrepo/libsox/blob/master/src/voc.c#L310
lists.debian.org/debian-lts-announce/2023/08/msg00015.html
security-tracker.debian.org/tracker/CVE-2023-32627
sourceforge.net/p/sox/bugs/369/