CVE-2017-15371

Published: Oct 16, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

There is a reachable assertion abort in the function sox_append_comment() in formats.c in Sound eXchange (SoX) 14.4.2. A Crafted input will lead to a denial of service attack during conversion of an audio file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[debian-lts-announce] 20171130 [SECURITY] [DLA 1197-1] sox security update

mailing-list

x_refsource_MLIST

GLSA-201810-02

vendor-advisory

x_refsource_GENTOO

[debian-lts-announce] 20190305 [SECURITY] [DLA 1705-1] sox security update

mailing-list

x_refsource_MLIST

https://bugzilla.redhat.com/show_bug.cgi?id=1500570

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-15371

Description

Affected Products

References