Information on source package sox

Available versions

ReleaseVersion
buster14.4.2+git20190427-1
bullseye14.4.2+git20190427-2
bookworm14.4.2+git20190427-3
sid14.4.2+git20190427-3

Open issues

BugbusterbullseyebookwormsidDescription
CVE-2022-31651vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn SoX 14.4.2, there is an assertion failure in rate_init in rate.c in ...
CVE-2022-31650vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn SoX 14.4.2, there is a floating-point exception in lsx_aiffstartwri ...
CVE-2021-40426vulnerablevulnerablevulnerablevulnerableA heap-based buffer overflow vulnerability exists in the sphere.c star ...
CVE-2021-33844vulnerablevulnerablevulnerablevulnerableA floating point exception (divide-by-zero) issue was discovered in So ...
CVE-2021-23210vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableA floating point exception (divide-by-zero) issue was discovered in So ...
CVE-2021-23172vulnerablevulnerablevulnerablevulnerableA vulnerability was found in SoX, where a heap-buffer-overflow occurs ...
CVE-2021-23159vulnerablevulnerablevulnerablevulnerableA vulnerability was found in SoX, where a heap-buffer-overflow occurs ...
CVE-2021-3643vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableA flaw was found in sox 14.4.1. The lsx_adpcm_init function within lib ...
CVE-2019-13590vulnerable (no DSA, ignored)fixedfixedfixedAn issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h (start ...

Resolved issues

BugDescription
CVE-2019-1010004SoX - Sound eXchange 14.4.2 and earlier is affected by: Out-of-bounds ...
CVE-2019-8357An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c ...
CVE-2019-8356An issue was discovered in SoX 14.4.2. One of the arguments to bitrv2 ...
CVE-2019-8355An issue was discovered in SoX 14.4.2. In xmalloc.h, there is an integ ...
CVE-2019-8354An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c ...
CVE-2017-18189In the startread function in xa.c in Sound eXchange (SoX) through 14.4 ...
CVE-2017-15642In lsx_aiffstartread in aiff.c in Sound eXchange (SoX) 14.4.2, there i ...
CVE-2017-15372There is a stack-based buffer overflow in the lsx_ms_adpcm_block_expan ...
CVE-2017-15371There is a reachable assertion abort in the function sox_append_commen ...
CVE-2017-15370There is a heap-based buffer overflow in the ImaExpandS function of im ...
CVE-2017-11359The wavwritehdr function in wav.c in Sound eXchange (SoX) 14.4.2 allow ...
CVE-2017-11358The read_samples function in hcom.c in Sound eXchange (SoX) 14.4.2 all ...
CVE-2017-11332The startread function in wav.c in Sound eXchange (SoX) 14.4.2 allows ...
CVE-2014-8145Multiple heap-based buffer overflows in Sound eXchange (SoX) 14.4.1 an ...
CVE-2004-0557Multiple buffer overflows in the st_wavstartread function in wav.c for ...

Security announcements

DSA / DLADescription
DLA-1808-1sox - security update
DLA-1705-1sox - security update
DLA-1695-1sox - security update
DLA-1687-1sox - security update
DLA-1197-1sox - security update
DLA-128-1sox - security update
DSA-3112-1sox - security update
DSA-565-1sox - buffer overflows

Search for package or bug name: Reporting problems