GHSA-363g-vch7-x5j4

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

In lsx_aiffstartread in aiff.c in Sound eXchange (SoX) 14.4.2, there is a Use-After-Free vulnerability triggered by supplying a malformed AIFF file.

EPSS

Процентиль: 70%

0.00639

Низкий

5.5 Medium

CVSS3

CWE-416

CVE-2017-15642

CVSS3: 5.5

ubuntu

больше 8 лет назад

In lsx_aiffstartread in aiff.c in Sound eXchange (SoX) 14.4.2, there is a Use-After-Free vulnerability triggered by supplying a malformed AIFF file.

CVE-2017-15642

CVSS3: 3.3

redhat

больше 8 лет назад

In lsx_aiffstartread in aiff.c in Sound eXchange (SoX) 14.4.2, there is a Use-After-Free vulnerability triggered by supplying a malformed AIFF file.

CVE-2017-15642

CVSS3: 5.5

nvd

больше 8 лет назад

In lsx_aiffstartread in aiff.c in Sound eXchange (SoX) 14.4.2, there is a Use-After-Free vulnerability triggered by supplying a malformed AIFF file.

CVE-2017-15642

CVSS3: 5.5

debian

больше 8 лет назад

In lsx_aiffstartread in aiff.c in Sound eXchange (SoX) 14.4.2, there i ...

EPSS

Процентиль: 70%

0.00639

Низкий

5.5 Medium

CVSS3

CWE-416