Описание
Security update for sox
This update for sox fixes the following issues:
- Apply various fix patches taken from Debian package; it fixes also other entries (CVE-2022-31650 boo#1212060 CVE-2023-34318 boo#1212062 CVE-2023-34432 boo#1212063)
- Fix floating point exception in src/voc.c (CVE-2023-32627 boo#1212061)
Список пакетов
SUSE Package Hub 15 SP4
openSUSE Leap 15.4
Ссылки
- E-Mail link for openSUSE-SU-2023:0328-1
- SUSE Security Ratings
- SUSE Bug 1212060
- SUSE Bug 1212061
- SUSE Bug 1212062
- SUSE Bug 1212063
- SUSE CVE CVE-2019-13590 page
- SUSE CVE CVE-2021-23159 page
- SUSE CVE CVE-2021-33844 page
- SUSE CVE CVE-2021-3643 page
- SUSE CVE CVE-2021-40426 page
- SUSE CVE CVE-2022-31650 page
- SUSE CVE CVE-2022-31651 page
- SUSE CVE CVE-2023-32627 page
- SUSE CVE CVE-2023-34318 page
- SUSE CVE CVE-2023-34432 page
Описание
An issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h (startread function), there is an integer overflow on the result of integer addition (wraparound to 0) fed into the lsx_calloc macro that wraps malloc. When a NULL pointer is returned, it is used without a prior check that it is a valid pointer, leading to a NULL pointer dereference on lsx_readbuf in formats_i.c.
Затронутые продукты
Ссылки
- CVE-2019-13590
- SUSE Bug 1141671
Описание
A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function lsx_read_w_buf() in formats_i.c file. The vulnerability is exploitable with a crafted file, that could cause an application to crash.
Затронутые продукты
Ссылки
- CVE-2021-23159
- SUSE Bug 1207046
Описание
A floating point exception (divide-by-zero) issue was discovered in SoX in functon startread() of wav.c file. An attacker with a crafted wav file, could cause an application to crash.
Затронутые продукты
Ссылки
- CVE-2021-33844
- SUSE Bug 1207043
Описание
A flaw was found in sox 14.4.1. The lsx_adpcm_init function within libsox leads to a global-buffer-overflow. This flaw allows an attacker to input a malicious file, leading to the disclosure of sensitive information.
Затронутые продукты
Ссылки
- CVE-2021-3643
- SUSE Bug 1207920
Описание
A heap-based buffer overflow vulnerability exists in the sphere.c start_read() functionality of Sound Exchange libsox 14.4.2 and master commit 42b3557e. A specially-crafted file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.
Затронутые продукты
Ссылки
- CVE-2021-40426
- SUSE Bug 1200056
Описание
In SoX 14.4.2, there is a floating-point exception in lsx_aiffstartwrite in aiff.c in libsox.a.
Затронутые продукты
Ссылки
- CVE-2022-31650
- SUSE Bug 1199946
Описание
In SoX 14.4.2, there is an assertion failure in rate_init in rate.c in libsox.a.
Затронутые продукты
Ссылки
- CVE-2022-31651
- SUSE Bug 1199947
Описание
A floating point exception vulnerability was found in sox, in the read_samples function at sox/src/voc.c:334:18. This flaw can lead to a denial of service.
Затронутые продукты
Ссылки
- CVE-2023-32627
- SUSE Bug 1212061
Описание
A heap buffer overflow vulnerability was found in sox, in the startread function at sox/src/hcom.c:160:41. This flaw can lead to a denial of service, code execution, or information disclosure.
Затронутые продукты
Ссылки
- CVE-2023-34318
- SUSE Bug 1212062
Описание
A heap buffer overflow vulnerability was found in sox, in the lsx_readbuf function at sox/src/formats_i.c:98:16. This flaw can lead to a denial of service, code execution, or information disclosure.
Затронутые продукты
Ссылки
- CVE-2023-34432
- SUSE Bug 1212063