CVE-2021-33844

Опубликовано: 20 апр. 2021

Источник: redhat

CVSS3: 3.3

EPSS Низкий

Описание

A floating point exception (divide-by-zero) issue was discovered in SoX in functon startread() of wav.c file. An attacker with a crafted wav file, could cause an application to crash.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	sox	Not affected
Red Hat Enterprise Linux 7	sox	Not affected
Red Hat Enterprise Linux AI (RHEL AI)	sox	Fix deferred

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-369

https://bugzilla.redhat.com/show_bug.cgi?id=1975664SoX: divide by zero crash in wav.c

EPSS

Процентиль: 12%

0.0004

Низкий

3.3 Low

CVSS3

Связанные уязвимости

CVE-2021-33844

CVSS3: 5.5

ubuntu

больше 3 лет назад

A floating point exception (divide-by-zero) issue was discovered in SoX in functon startread() of wav.c file. An attacker with a crafted wav file, could cause an application to crash.

CVE-2021-33844

CVSS3: 5.5

nvd

больше 3 лет назад

A floating point exception (divide-by-zero) issue was discovered in SoX in functon startread() of wav.c file. An attacker with a crafted wav file, could cause an application to crash.

CVE-2021-33844

CVSS3: 5.5

debian

больше 3 лет назад

A floating point exception (divide-by-zero) issue was discovered in So ...

GHSA-3q4f-g8fc-j65f

CVSS3: 5.5

github

больше 3 лет назад

A floating point exception (divide-by-zero) issue was discovered in SoX in functon startread() of wav.c file. An attacker with a crafted wav file, could cause an application to crash.

BDU:2024-07301

CVSS3: 5.5

fstec

почти 5 лет назад

Уязвимость функции startread() компонента wav.c программы обработки звука SoX, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 12%

0.0004

Низкий

3.3 Low

CVSS3