Lucene search
GoogleOSV:DLA-128-1HistoryJan 03, 2015 - 12:00 a.m.
sox - security update
2015-01-0300:00:00
Google
osv.dev
4
EPSS
0.019
Percentile
88.6%
Michele Spagnuolo of the Google Security Team dicovered two heap-based
buffer overflows in SoX, the Swiss Army knife of sound processing
programs. A specially crafted wav file could cause an application using
SoX to crash or, possibly, execute arbitrary code.
For Debian 6 Squeeze, these issues have been fixed in sox version 14.3.1-1+deb6u1
References
Related
securityvulns
securityvulns
SoX buffer overflows
2014-12-23 00:00:00
[oCERT-2014-010] SoX input sanitization errors
2014-12-23 00:00:00
osv
osv
sox - security update
2019-02-24 00:00:00
gentoo
gentoo
SoX: User-assisted execution of arbitrary code
2016-12-11 00:00:00
prion
prion
Heap overflow
2014-12-31 22:59:00
fedora
fedora
[SECURITY] Fedora 21 Update: sox-14.4.1-7.fc21
2015-02-23 23:27:31
openvas
openvas
Debian: Security Advisory (DLA-1687-1)
2019-02-24 00:00:00
Mageia: Security Advisory (MGASA-2014-0561)
2022-01-28 00:00:00
Debian Security Advisory DSA 3112-1 (sox - security update)
2014-12-23 00:00:00
debian
debian
[SECURITY] [DLA 1687-1] sox security update
2019-02-24 19:56:20
[SECURITY] [DSA 3112-1] sox security update
2014-12-23 16:56:39
[SECURITY] [DLA 128-1] sox security update
2015-01-03 21:31:52
freebsd
freebsd
sox -- input sanitization errors
2014-11-20 00:00:00
nessus
nessus
Debian DLA-128-1 : sox security update
2015-03-26 00:00:00
Debian DSA-3112-1 : sox - security update
2014-12-26 00:00:00
Mandriva Linux Security Advisory : sox (MDVSA-2015:015)
2015-01-09 00:00:00
debiancve
debiancve
CVE-2014-8145
2014-12-31 22:59:03
veracode
veracode
Buffer Overflows
2020-12-06 04:37:53
ubuntucve
ubuntucve
CVE-2014-8145
2014-12-31 00:00:00
cve
cve
CVE-2014-8145
2014-12-31 22:59:03
nvd
nvd
CVE-2014-8145
2014-12-31 22:59:03
cvelist
cvelist
CVE-2014-8145
2014-12-31 22:00:00
mageia
mageia
Updated sox packages fix CVE-2014-8145
2014-12-31 15:28:04