CVE-2014-8145

Related Files

Mandriva Linux Security Advisory 2015-015

Posted Jan 8, 2015

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2015-015 - The sox command line tool is affected by two heap-based buffer overflows, respectively located in functions start_read() and AdpcmReadBlock(). A specially crafted wav file can be used to trigger the vulnerabilities.

tags | advisory, overflow, vulnerability

systems | linux, mandriva

advisories | CVE-2014-8145

SHA-256 | 05e2d5eccde0f99b9b7535011b4133c0ed51d18513c2cfd97fd85d1ac0504c1c

Download | Favorite | View

Debian Security Advisory 3112-1

Posted Dec 24, 2014

Authored by Debian | Site debian.org

Debian Linux Security Advisory 3112-1 - Michele Spagnuolo of the Google Security Team discovered two heap-based buffer overflows in SoX, the Swiss Army knife of sound processing programs. A specially crafted wav file could cause an application using SoX to crash or, possibly, execute arbitrary code.

tags | advisory, overflow, arbitrary

systems | linux, debian

advisories | CVE-2014-8145

SHA-256 | e522b182877461036a97d01f0b34ab4677e45c89f632e7073c9d575ceb4d440a

Download | Favorite | View

SoX 14.4.1 Heap Buffer Overflow

Posted Dec 22, 2014

Authored by Andrea Barisani, Open Source CERT

SoX versions 14.4.1 and below suffer from multiple heap-based buffer overflow vulnerabilities.

tags | advisory, overflow, vulnerability

advisories | CVE-2014-8145

SHA-256 | aeff85e5727326a30715ccc28a8c670697acdefdd8f05484570ea038725641a8

Download | Favorite | View