Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sound exchange project sound exchange vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2017-15371
There is a reachable assertion abort in the function sox_append_comment() in formats.c in Sound eXchange (SoX) 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file.
Sound Exchange Project Sound Exchange 14.4.2
Debian Debian Linux 8.0
Debian Debian Linux 7.0
383
VMScore
CVE-2017-15372
There is a stack-based buffer overflow in the lsx_ms_adpcm_block_expand_i function of adpcm.c in Sound eXchange (SoX) 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file.
Sound Exchange Project Sound Exchange 14.4.2
Debian Debian Linux 8.0
Debian Debian Linux 7.0
435
VMScore
CVE-2017-11332
The startread function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a crafted wav file.
Sound Exchange Project Sound Exchange 14.4.2
Debian Debian Linux 8.0
Debian Debian Linux 7.0
1 EDB exploit
668
VMScore
CVE-2014-8145
Multiple heap-based buffer overflows in Sound eXchange (SoX) 14.4.1 and previous versions allow remote malicious users to have unspecified impact via a crafted WAV file to the (1) start_read or (2) AdpcmReadBlock function.
Sound Exchange Project Sound Exchange
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Oracle Solaris 11.2
383
VMScore
CVE-2019-8354
An issue exists in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c has an integer overflow on the result of multiplication fed into malloc. When the buffer is allocated, it is smaller than expected, leading to a heap-based buffer overflow.
Sound Exchange Project Sound Exchange 14.4.2
Debian Debian Linux 8.0
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
NA
CVE-2023-34432
A heap buffer overflow vulnerability was found in sox, in the lsx_readbuf function at sox/src/formats_i.c:98:16. This flaw can lead to a denial of service, code execution, or information disclosure.
Sound Exchange Project Sound Exchange
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Fedoraproject Extra Packages For Enterprise Linux 8.0
Fedoraproject Fedora 38
605
VMScore
CVE-2021-40426
A heap-based buffer overflow vulnerability exists in the sphere.c start_read() functionality of Sound Exchange libsox 14.4.2 and master commit 42b3557e. A specially-crafted file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerabi...
Libsox Project Libsox 14.4.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2