CVE-2017-11332 - log back

CVE-2017-11332 created at 25 Sep 2019 19:31:40
Severity
+ Low
Remote
+ Local
Type
+ Denial of service
Description
+ The startread function in wav.c in Sound eXchange (SoX) 14.4.2 allows attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted wav file.
References
+ https://github.com/mansr/sox/commit/7405bcaacb1ded8c595cb751d407cf738cb26571
+ http://seclists.org/fulldisclosure/2017/Jul/81
+ https://lists.debian.org/debian-lts-announce/2017/11/msg00043.html
+ https://www.exploit-db.com/exploits/42398/
Notes