CVE-2023-34432

Опубликовано: 05 мая 2023

Источник: redhat

CVSS3: 7.8

EPSS Низкий

Описание

A heap buffer overflow vulnerability was found in sox, in the lsx_readbuf function at sox/src/formats_i.c:98:16. This flaw can lead to a denial of service, code execution, or information disclosure.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	sox	Out of support scope
Red Hat Enterprise Linux 7	sox	Out of support scope

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-122

https://bugzilla.redhat.com/show_bug.cgi?id=2212291sox: heap-buffer-overflow in src/formats_i.c

EPSS

Процентиль: 10%

0.00036

Низкий

7.8 High

CVSS3

Связанные уязвимости

CVE-2023-34432

CVSS3: 7.8

ubuntu

больше 2 лет назад

A heap buffer overflow vulnerability was found in sox, in the lsx_readbuf function at sox/src/formats_i.c:98:16. This flaw can lead to a denial of service, code execution, or information disclosure.

CVE-2023-34432

CVSS3: 7.8

nvd

больше 2 лет назад

A heap buffer overflow vulnerability was found in sox, in the lsx_readbuf function at sox/src/formats_i.c:98:16. This flaw can lead to a denial of service, code execution, or information disclosure.

CVE-2023-34432

CVSS3: 7.8

debian

больше 2 лет назад

A heap buffer overflow vulnerability was found in sox, in the lsx_read ...

GHSA-fv9q-mgwx-m5gr

CVSS3: 7.8

github

больше 2 лет назад

A heap buffer overflow vulnerability was found in sox, in the lsx_readbuf function at sox/src/formats_i.c:98:16. This flaw can lead to a denial of service, code execution, or information disclosure.

openSUSE-SU-2023:0329-1

suse-cvrf

больше 2 лет назад

Security update for sox

EPSS

Процентиль: 10%

0.00036

Низкий

7.8 High

CVSS3