| Bug | jessie | stretch | buster | sid | Description |
|---|
| CVE-2019-8357 | fixed | vulnerable | fixed | fixed | An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c ... |
| CVE-2019-8356 | fixed | vulnerable | fixed | fixed | An issue was discovered in SoX 14.4.2. One of the arguments to bitrv2 ... |
| CVE-2019-8355 | fixed | vulnerable | fixed | fixed | An issue was discovered in SoX 14.4.2. In xmalloc.h, there is an integ ... |
| CVE-2019-8354 | fixed | vulnerable | fixed | fixed | An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c ... |
| CVE-2017-18189 | fixed | vulnerable (no DSA) | fixed | fixed | In the startread function in xa.c in Sound eXchange (SoX) through 14.4 ... |
| CVE-2017-15642 | fixed | vulnerable (no DSA) | fixed | fixed | In lsx_aiffstartread in aiff.c in Sound eXchange (SoX) 14.4.2, there i ... |
| CVE-2017-15372 | fixed | vulnerable (no DSA) | fixed | fixed | There is a stack-based buffer overflow in the lsx_ms_adpcm_block_expan ... |
| CVE-2017-15371 | fixed | vulnerable (no DSA) | fixed | fixed | There is a reachable assertion abort in the function sox_append_commen ... |
| CVE-2017-15370 | fixed | vulnerable (no DSA) | fixed | fixed | There is a heap-based buffer overflow in the ImaExpandS function of im ... |
| CVE-2017-11359 | fixed | vulnerable (no DSA) | fixed | fixed | The wavwritehdr function in wav.c in Sound eXchange (SoX) 14.4.2 allow ... |
| CVE-2017-11358 | fixed | vulnerable (no DSA) | fixed | fixed | The read_samples function in hcom.c in Sound eXchange (SoX) 14.4.2 all ... |
| CVE-2017-11332 | fixed | vulnerable (no DSA) | fixed | fixed | The startread function in wav.c in Sound eXchange (SoX) 14.4.2 allows ... |