pkg:Debian/sox
40 total CVEsCRITICAL1HIGH4MEDIUM28
✅ Check your installed version
All known vulnerabilities
- from 0, < 14.4.2+git20190427-2+deb11u1
- HIGH8.8CVE-2021-40426A heap-based buffer overflow vulnerability exists in the sphere.c start_read() functionality of Sound Exchange libsox 14.4.2 and master com…from 0, < 14.4.2+git20190427-2+deb11u1
- HIGH7.8CVE-2023-34432A heap buffer overflow vulnerability was found in sox, in the lsx_readbuf function at sox/src/formats_i.c:98:16.from 0, < 14.4.2+git20190427-2+deb11u1
- HIGH7.8CVE-2023-34318A heap buffer overflow vulnerability was found in sox, in the startread function at sox/src/hcom.c:160:41.from 0, < 14.4.2+git20190427-2+deb11u1
- HIGH7.5CVE-2017-18189In the startread function in xa.c in Sound eXchange (SoX) through 14.4.2, a corrupt header specifying zero channels triggers an infinite lo…from 0, < 14.4.2-2
- from 0
- from 0, < 14.4.2+git20190427-1+deb10u3
- MEDIUM5.5CVE-2023-26590A floating point exception vulnerability was found in sox, in the lsx_aiffstartwrite function at sox/src/aiff.c:622:58.from 0, < 14.4.2+git20190427-2+deb11u1
- MEDIUM5.5CVE-2021-33844A floating point exception (divide-by-zero) issue was discovered in SoX in functon startread() of wav.c file.from 0, < 14.4.2+git20190427-2+deb11u1
- MEDIUM5.5CVE-2021-23210A floating point exception (divide-by-zero) issue was discovered in SoX in functon read_samples() of voc.c file.from 0, < 14.4.2+git20190427-2+deb11u1
- MEDIUM5.5CVE-2021-23172A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function startread() in hcom.c file.from 0, < 14.4.2+git20190427-2+deb11u1
- from 0, < 14.4.2+git20190427-2+deb11u1
- from 0, < 14.4.2+git20190427-2+deb11u1
- MEDIUM5.5CVE-2022-31651In SoX 14.4.2, there is an assertion failure in rate_init in rate.c in libsox.a.from 0, < 14.4.2+git20190427-2+deb11u1
- MEDIUM5.5CVE-2022-31650In SoX 14.4.2, there is a floating-point exception in lsx_aiffstartwrite in aiff.c in libsox.a.from 0, < 14.4.2+git20190427-2+deb11u1
- MEDIUM5.5CVE-2019-1010004SoX - Sound eXchange 14.4.2 and earlier is affected by: Out-of-bounds Read.from 0, < 14.4.2-2
- from 0, < 14.4.2+git20190427-2
- from 0, < 14.4.2+git20190427-1+deb10u1
- from 0, < 14.4.2+git20190427-1
- from 0, < 14.4.2+git20190427-1
- from 0, < 14.4.2+git20190427-1
- MEDIUM5.5CVE-2017-15642In lsx_aiffstartread in aiff.c in Sound eXchange (SoX) 14.4.2, there is a Use-After-Free vulnerability triggered by supplying a malformed A…from 0, < 14.4.2-2
- MEDIUM5.5CVE-2017-15372There is a stack-based buffer overflow in the lsx_ms_adpcm_block_expand_i function of adpcm.c in Sound eXchange (SoX) 14.4.2.from 0, < 14.4.2-2
- MEDIUM5.5CVE-2017-15371There is a reachable assertion abort in the function sox_append_comment() in formats.c in Sound eXchange (SoX) 14.4.2.from 0, < 14.4.2-2
- from 0, < 14.4.1-5+deb8u2
- from 0, < 14.4.2-2
- MEDIUM5.5CVE-2017-11359The wavwritehdr function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (divide-by-zero error…from 0, < 14.4.2-2
- MEDIUM5.5CVE-2017-11358The read_samples function in hcom.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (invalid memory rea…from 0, < 14.4.2-2
- from 0, < 14.4.0-3+deb7u2
- from 0, < 14.4.2-2
- from 0, < 14.4.1-5+deb8u3
- from 0, < 14.4.2+git20190427-1
- from 0, < 14.4.1-5+deb8u4
- —CVE-2022-50798SoX 14.4.2 contains a division by zero vulnerability when handling WAV files that can cause program crashes.from 0, < 14.4.2-2
- from 0, < 14.3.1-1+deb6u1
- from 0, < 14.4.1-5+deb8u1
- from 0, < 14.4.2-2
- from 0, < 14.4.0-3+deb7u1
- from 0, < 12.17.4-9
- from 0, < 12.17.3-4woody2